IE hazi chybu Vyřešeno

[feryking]

napiste presne co se ma pak dat vsechno pryc. dekuji

[Reklama]

[jaro3]

Máš to v předešlém příspěvku.

[feryking]

Logfile of The Avenger Version 2.0, (c) by Swandog46
http://swandog46.geekstogo.com

Platform: Windows XP

*******************

Script file opened successfully.
Script file read successfully.

Backups directory opened successfully at C:\Avenger

*******************

Beginning to process script file:

Rootkit scan active.
No rootkits found!

File "c:\windows\system32\vnrqap" deleted successfully.
File "c:\windows\system32\oqolacno" deleted successfully.
File "c:\windows\system32\wymcqhm" deleted successfully.
File "c:\windows\system32\ifhsqioka" deleted successfully.
File "c:\windows\system32\nyixow" deleted successfully.
File "c:\windows\system32\xwpji" deleted successfully.
File "c:\windows\system32\jclzia" deleted successfully.
File "c:\windows\system32\tlsn" deleted successfully.
File "c:\windows\system32\ahvs" deleted successfully.
File "c:\windows\system32\wijwe" deleted successfully.
File "c:\windows\system32\dflbes" deleted successfully.
File "c:\windows\system32\sliy" deleted successfully.
File "c:\windows\system32\zild" deleted successfully.
File "c:\windows\system32\inxxan" deleted successfully.
File "c:\windows\system32\bqusa" deleted successfully.
File "c:\windows\system32\ziutzmk" deleted successfully.
File "c:\windows\system32\slrpzz" deleted successfully.
File "c:\windows\system32\qrfiifkze" deleted successfully.
File "c:\windows\system32\juddisxowk" deleted successfully.
File "c:\windows\system32\zujvh" deleted successfully.
File "c:\windows\system32\sxgqhp" deleted successfully.
File "c:\windows\system32\vutzciid" deleted successfully.
File "c:\windows\system32\kjpndxf" deleted successfully.
File "c:\windows\system32\dmnjd" deleted successfully.
File "c:\windows\system32\crwec" deleted successfully.
File "c:\windows\system32\hgxkcu" deleted successfully.
File "c:\windows\system32\ajvfchzk" deleted successfully.
File "c:\windows\system32\kjto" deleted successfully.
File "c:\windows\system32\dmrj" deleted successfully.
File "c:\windows\system32\trgwug" deleted successfully.
File "c:\windows\system32\mudru" deleted successfully.
File "c:\windows\system32\xqztt" deleted successfully.
File "c:\windows\system32\quxotohnhj" deleted successfully.
File "c:\windows\system32\rvidqqjvsd" deleted successfully.
File "c:\windows\system32\lyfyqd" deleted successfully.
File "c:\windows\system32\uutcmo" deleted successfully.
File "c:\windows\system32\nxrxmbzp" deleted successfully.
File "c:\windows\system32\jqjbj" deleted successfully.
File "c:\windows\system32\ctgwjd" deleted successfully.
File "c:\windows\system32\zjzjfoni" deleted successfully.
File "c:\windows\system32\xqhugdoa" deleted successfully.
File "c:\windows\system32\fgbof" deleted successfully.
File "c:\windows\system32\enjzgq" deleted successfully.

Completed script processing.

*******************

Finished! Terminate.

[feryking]

ComboFix 08-11-18.A1 - Administrator 2008-11-19 17:10:24.6 - NTFSx86
Systém Microsoft Windows XP Professional 5.1.2600.2.1250.1.1029.18.2905 [GMT 1:00]
Spuštěný z: c:\documents and settings\Administrator\Plocha\ComboFix.exe

VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.

((((((((((((((((((((((((( Soubory vytvořené od 2008-10-19 do 2008-11-19 )))))))))))))))))))))))))))))))
.

2008-11-19 15:49 . 2008-11-19 15:49 <DIR> d-------- c:\documents and settings\Administrator\Data aplikací\Leadertech
2008-11-19 15:42 . 2008-11-19 15:42 <DIR> d-------- c:\program files\EA Games
2008-11-19 04:59 . 2008-11-19 04:59 <DIR> d-------- c:\documents and settings\Administrator\DoctorWeb
2008-11-18 19:27 . 2008-11-18 19:27 <DIR> d-------- c:\windows\ERUNT
2008-11-18 19:24 . 2008-11-18 19:33 <DIR> d-------- C:\SDFix
2008-11-18 19:08 . 2008-11-18 19:08 754 --a------ c:\windows\WORDPAD.INI
2008-11-17 12:35 . 2008-11-17 12:35 <DIR> d-------- c:\program files\Malwarebytes' Anti-Malware
2008-11-17 12:35 . 2008-10-22 16:10 38,496 --a------ c:\windows\system32\drivers\mbamswissarmy.sys
2008-11-17 12:35 . 2008-10-22 16:10 15,504 --a------ c:\windows\system32\drivers\mbam.sys
2008-11-16 09:53 . 2008-11-16 09:53 <DIR> d-------- c:\program files\Jigs@w Puzzle
2008-11-16 09:53 . 2001-04-08 16:00 46,080 --a------ c:\windows\tbuninst2.exe
2008-11-16 09:46 . 2008-11-16 09:46 <DIR> d-------- c:\windows\system32\cs-cz
2008-11-16 09:44 . 2008-11-16 09:44 <DIR> d--h----- c:\windows\$hf_mig$
2008-11-15 13:32 . 2008-11-15 13:32 <DIR> d-------- c:\program files\CCleaner
2008-11-15 00:40 . 2004-08-03 22:58 5,504 --a------ c:\windows\system32\drivers\MSTEE.sys
2008-11-15 00:40 . 2004-08-03 22:58 5,504 --a--c--- c:\windows\system32\dllcache\mstee.sys
2008-11-15 00:39 . 2008-11-15 00:39 <DIR> d-------- c:\program files\Common Files\snpstd
2008-11-15 00:19 . 2008-11-15 00:19 <DIR> dr------- c:\program files\Skype
2008-11-15 00:19 . 2008-11-15 00:19 <DIR> d-------- c:\documents and settings\All Users\Data aplikací\Skype
2008-11-15 00:19 . 2008-11-17 19:06 <DIR> d-------- c:\documents and settings\Administrator\Data aplikací\Skype
2008-11-14 09:57 . 2008-11-15 15:11 63,488 --a------ c:\windows\system32\xrgv.sl
2008-11-14 09:57 . 2008-11-15 15:11 32,768 --a------ c:\windows\system32\fjvv.ra
2008-11-13 23:27 . 2008-11-13 23:28 <DIR> d-------- c:\windows\system32\NtmsData
2008-11-13 02:38 . 2008-11-13 02:38 <DIR> d-------- c:\documents and settings\Administrator\Data aplikací\Ace
2008-11-13 01:44 . 2008-11-13 01:44 <DIR> d-------- c:\documents and settings\Administrator\Data aplikací\CyberLink
2008-11-13 01:42 . 2008-11-13 01:42 <DIR> d-------- c:\program files\CyberLink
2008-11-13 01:42 . 2008-11-13 01:42 <DIR> d-------- c:\program files\Common Files\CyberLink
2008-11-13 01:42 . 2008-11-13 01:52 <DIR> d-------- c:\documents and settings\All Users\Data aplikací\CyberLink
2008-11-13 01:42 . 2008-11-13 01:41 29,480 --a------ c:\windows\system32\msxml3a.dll
2008-11-13 00:52 . 2008-11-13 00:52 <DIR> d-------- c:\program files\THQ
2008-11-13 00:52 . 2008-11-13 00:52 <DIR> d-------- c:\documents and settings\Administrator\Data aplikací\InstallShield
2008-11-13 00:44 . 2008-11-13 00:44 <DIR> d-------- c:\program files\Windows Doctor
2008-11-12 23:46 . 2008-11-12 23:46 <DIR> d-------- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2008-11-12 23:46 . 2008-11-12 23:46 <DIR> d-------- c:\documents and settings\Administrator\Data aplikací\Malwarebytes
2008-11-12 23:00 . 2008-11-12 23:00 <DIR> d-------- c:\windows\system32\LogFiles
2008-11-12 23:00 . 2008-11-12 23:00 682,280 --a------ c:\windows\system32\pbsvc.exe
2008-11-12 23:00 . 2008-11-19 16:54 138,464 --a------ c:\windows\system32\drivers\PnkBstrK.sys
2008-11-12 23:00 . 2008-11-19 16:53 111,928 --a------ c:\windows\system32\PnkBstrB.exe
2008-11-12 23:00 . 2008-11-19 16:54 66,872 --a------ c:\windows\system32\PnkBstrA.exe
2008-11-12 23:00 . 2008-11-12 23:00 22,328 --a------ c:\documents and settings\Administrator\Data aplikací\PnkBstrK.sys
2008-11-12 22:55 . 2008-11-12 22:55 <DIR> d-------- c:\program files\Activision
2008-11-12 22:46 . 2008-11-12 22:46 <DIR> d--hs---- c:\windows\ftpcache
2008-11-12 22:43 . 2008-11-12 22:43 <DIR> d-------- c:\program files\Nero
2008-11-12 22:43 . 2008-11-12 22:45 <DIR> d-------- c:\program files\Common Files\Ahead
2008-11-12 22:43 . 2008-11-12 22:43 <DIR> d-------- c:\documents and settings\All Users\Data aplikací\Nero
2008-11-12 11:47 . 2001-08-17 22:02 9,600 --a------ c:\windows\system32\drivers\hidusb.sys
2008-11-12 11:47 . 2001-08-17 22:02 9,600 --a--c--- c:\windows\system32\dllcache\hidusb.sys
2008-11-12 11:45 . 2008-11-12 11:45 <DIR> d-------- c:\program files\Common Files\DirectX
2008-11-12 11:36 . 2008-11-12 11:36 <DIR> d-------- c:\program files\SCi Games
2008-11-12 11:02 . 2008-11-18 15:51 69 --a------ c:\windows\NeroDigital.ini
2008-11-12 11:00 . 2008-11-12 11:00 <DIR> d-------- c:\documents and settings\All Users\Data aplikací\Ahead
2008-11-12 11:00 . 2008-11-13 01:01 <DIR> d-------- c:\documents and settings\Administrator\Data aplikací\Ahead
2008-11-12 10:23 . 2008-11-12 10:23 <DIR> d-------- c:\documents and settings\Administrator\Data aplikací\AdobeUM
2008-11-12 10:18 . 2008-11-12 10:18 <DIR> d-------- c:\program files\Common Files\Adobe
2008-11-12 10:11 . 2008-11-12 10:11 <DIR> d-------- c:\program files\DAEMON Tools Lite
2008-11-12 10:09 . 2008-11-12 10:09 <DIR> d-------- c:\documents and settings\Administrator\Data aplikací\DAEMON Tools
2008-11-12 10:09 . 2008-11-12 10:09 717,296 --a------ c:\windows\system32\drivers\sptd.sys
2008-11-12 10:04 . 2008-11-12 10:04 <DIR> d-------- c:\program files\Seznam DVD5

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-11-19 16:07 --------- d-----w c:\documents and settings\Administrator\Data aplikací\uTorrent
2008-11-18 17:32 --------- d-----w c:\program files\uTorrent
2008-11-14 23:38 --------- d--h--w c:\program files\InstallShield Installation Information
2008-11-14 08:57 577,024 ----a-w c:\windows\system32\user32.DLL
2008-11-12 11:22 --------- d-----w c:\program files\ICQ6
2008-11-12 10:38 11,973 ----a-w c:\windows\system32\drivers\secdrv.sys
2008-11-12 08:55 --------- d-----w c:\documents and settings\Administrator\Data aplikací\ICQ
2008-11-12 08:05 --------- d-----w c:\program files\Alwil Software
2008-11-12 07:56 315,392 ----a-w c:\windows\HideWin.exe
2008-11-12 07:56 --------- d-----w c:\program files\Realtek
2008-11-12 07:56 --------- d-----w c:\program files\Common Files\InstallShield
2008-11-12 07:51 16,512 ----a-w c:\windows\gdrv.sys
2008-11-12 07:45 --------- d-----w c:\program files\microsoft frontpage
2008-10-02 09:07 453,152 ----a-w c:\windows\system32\NVUNINST.EXE
.

((((((((((((((((((((((((((((( snapshot@2008-11-18_20.02.23,89 )))))))))))))))))))))))))))))))))))))))))
.
+ 2008-11-19 14:49:28 4,369,408 ----a-r c:\windows\Installer\{E6D22FE1-AB5F-42CA-9480-6F70B96DDD88}\EAregister.exe
+ 2008-11-19 14:49:27 3,262 ----a-r c:\windows\Installer\{E6D22FE1-AB5F-42CA-9480-6F70B96DDD88}\nfs_icon.exe
- 2008-11-14 08:57:43 577,024 -c--a-w c:\windows\system32\dllcache\user32.dll
+ 2008-11-14 08:57:44 577,024 -c--a-w c:\windows\system32\dllcache\user32.dll
+ 2008-11-19 16:08:54 16,384 ----atw c:\windows\Temp\Perflib_Perfdata_5a4.dat
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2006-11-16 139264]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2004-08-17 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2008-07-19 78008]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-10-07 13574144]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-10-07 86016]
"RemoteControl8"="c:\program files\CyberLink\PowerDVD8\PDVD8Serv.exe" [2008-03-20 83240]
"PDVD8LanguageShortcut"="c:\program files\CyberLink\PowerDVD8\Language\Language.exe" [2007-12-14 50472]
"BDRegion"="c:\program files\Cyberlink\Shared Files\brs.exe" [2008-11-13 91432]
"snpstd"="c:\windows\vsnpstd.exe" [2004-06-10 286720]
"RTHDCPL"="RTHDCPL.EXE" [2007-08-20 c:\windows\RTHDCPL.exe]
"nwiz"="nwiz.exe" [2008-10-07 c:\windows\system32\nwiz.exe]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-17 15360]

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\Program Files\\uTorrent\\utorrent.exe"=
"c:\\Program Files\\ICQ6\\ICQ.exe"=
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"c:\\Program Files\\Activision\\Call of Duty - World at War\\CoDWaWmp.exe"=
"c:\\Program Files\\Activision\\Call of Duty - World at War\\CoDWaW.exe"=
"c:\\Program Files\\CyberLink\\PowerDVD8\\PowerDVD8.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=

R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2008-11-12 78416]
R2 {FE4C91E7-22C2-4D0C-9F6B-82F1B7742054};{FE4C91E7-22C2-4D0C-9F6B-82F1B7742054};\??\c:\program files\CyberLink\PowerDVD8\000.fcl [2008-05-15 12:07:00 61424]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\DRIVERS\aswFsBlk.sys [2008-11-12 20560]
R3 PSched;Plánovač paketů technologie QoS;c:\windows\system32\DRIVERS\psched.sys [2004-08-03 69120]
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-11-19 17:31:16
Windows 5.1.2600 Service Pack 2 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\system\ControlSet001\Services\{FE4C91E7-22C2-4D0C-9F6B-82F1B7742054}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD8\000.fcl"
.
Celkový čas: 2008-11-19 17:31:32
ComboFix-quarantined-files.txt 2008-11-19 16:31:31
ComboFix2.txt 2008-11-19 13:25:05
ComboFix3.txt 2008-11-18 19:02:33

Před spuštěním: Volných bajtů: 80,280,018,944
Po spuštění: Volných bajtů: 80,292,741,120

145

[jaro3]

Log O.K.
Najdi a smaž: C:\SDFix
Pošli nový log z HJT.+ info o IE.

[feryking]

A co dal?

[feryking]

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:34:29, on 19.11.2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\RTHDCPL.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe
C:\Program Files\Cyberlink\Shared Files\brs.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\explorer.exe
C:\Program Files\uTorrent\utorrent.exe
C:\Program Files\ICQ6\ICQ.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Documents and Settings\Administrator\Plocha\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [RemoteControl8] "C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe"
O4 - HKLM\..\Run: [PDVD8LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD8\Language\Language.exe"
O4 - HKLM\..\Run: [BDRegion] C:\Program Files\Cyberlink\Shared Files\brs.exe
O4 - HKLM\..\Run: [snpstd] C:\WINDOWS\vsnpstd.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{0C5FA9D1-3336-4DBD-8D8D-7E643B3C0547}: NameServer = 213.180.32.2
O17 - HKLM\System\CS1\Services\Tcpip\..\{0C5FA9D1-3336-4DBD-8D8D-7E643B3C0547}: NameServer = 213.180.32.2
O17 - HKLM\System\CS2\Services\Tcpip\..\{0C5FA9D1-3336-4DBD-8D8D-7E643B3C0547}: NameServer = 213.180.32.2
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe

--
End of file - 4848 bytes
Jaky info o IE ?

[jaro3]

Log O.K:
ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix[mezera]/u

takže jestli nejsou problémy,tak vyčisti systém CCleanerem
a použij i T-Cleaner
smaže vše po Combu,SDFixu,Avengeru,MWAVu atd.-stáhneš>spustíš

Máš v názvu tématu IE hází chybu, tak napiš jestli to je už v pořádku.

[feryking]

Zatim vse ok. Nemel bych zmenit antivirak? treba na noda aby se my to tam znova nedostalo? je to tyden co jsem to preinstalovaval

[jaro3]

Ten bych asi nechal, to bys musel přejít na něco placeného. Ale přidal bych něco na spyware/adware. Aspoň SpywareTerminátor, Spybot, SpywareDoctor ap.
EDIT: možná firewall, Zone alarm, Kerio, Comodo , chce to vyzkoušet

[feryking]

Ktery je lepsi?

[jaro3]

Těžko posoudit, jsou tady na fóru témata , pohledej.