prosim o pomoc

[vyosek]

Ou Kej, pak se pustte do OTM

[makysekp]

All processes killed
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

Restore points cleared and new OTM Restore Point set!

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 141066 bytes

User: Marketa
->Temp folder emptied: 5291864 bytes
->Temporary Internet Files folder emptied: 64799929 bytes
->Java cache emptied: 49386932 bytes
->FireFox cache emptied: 58140009 bytes
->Google Chrome cache emptied: 13735747 bytes
->Opera cache emptied: 1644396321 bytes
->Flash cache emptied: 790566 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 3528992 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 2114584 bytes
%systemroot%\System32 .tmp files removed: 2504 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 1018687 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 928534325 bytes

Total Files Cleaned = 2 644,00 mb


[EMPTYFLASH]

User: All Users

User: Default User

User: LocalService

User: Marketa
->Flash cache emptied: 0 bytes

User: NetworkService

Total Flash Files Cleaned = 0,00 mb

========== REGISTRY ==========
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks\\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks\\{33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{D5D47440-0750-463D-BAEF-A47D02414806} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D5D47440-0750-463D-BAEF-A47D02414806}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{30F9B915-B755-4826-820B-08FBA6BD249D} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\iTunesHelper deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\MFARestart deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\KernelFaultCheck deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\HP Software Update deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\UserFaultCheck deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce\\wextract_cleanup0 deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce\\ deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Google Update deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\MSMSGS deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\SpybotSD TeaTimer deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\ctfmon.exe deleted successfully.
Registry value HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list\\C:\Documents and Settings\Marketa\Data aplikací\2E.tmp deleted successfully.
========== FILES ==========
C:\Program Files\TrojanHunter 5.3\Tools\Window List folder moved successfully.
C:\Program Files\TrojanHunter 5.3\Tools\Process Viewer folder moved successfully.
C:\Program Files\TrojanHunter 5.3\Tools\Netstat Viewer folder moved successfully.
C:\Program Files\TrojanHunter 5.3\Tools\MemString folder moved successfully.
C:\Program Files\TrojanHunter 5.3\Tools\LiveUpdate folder moved successfully.
C:\Program Files\TrojanHunter 5.3\Tools\Autostart Explorer folder moved successfully.
C:\Program Files\TrojanHunter 5.3\Tools folder moved successfully.
C:\Program Files\TrojanHunter 5.3\SubmitFiles folder moved successfully.
C:\Program Files\TrojanHunter 5.3\Scan Reports folder moved successfully.
C:\Program Files\TrojanHunter 5.3\RuleFiles folder moved successfully.
C:\Program Files\TrojanHunter 5.3\Quarantine folder moved successfully.
C:\Program Files\TrojanHunter 5.3\Doc folder moved successfully.
C:\Program Files\TrojanHunter 5.3 folder moved successfully.
C:\autorun-remover.bat moved successfully.
C:\Program Files\ESET\ESET Online Scanner\Quarantine folder moved successfully.
C:\Program Files\ESET\ESET Online Scanner\Modules\data\updfiles\temp folder moved successfully.
C:\Program Files\ESET\ESET Online Scanner\Modules\data\updfiles\http_update.eset.com folder moved successfully.
C:\Program Files\ESET\ESET Online Scanner\Modules\data\updfiles folder moved successfully.
C:\Program Files\ESET\ESET Online Scanner\Modules\data folder moved successfully.
C:\Program Files\ESET\ESET Online Scanner\Modules folder moved successfully.
C:\Program Files\ESET\ESET Online Scanner folder moved successfully.
C:\Program Files\ESET folder moved successfully.
File/Folder C:\WINDOWS\system32\ConduitEngine.tmp not found.
C:\Documents and Settings\Marketa\Data aplikací\PriceGong\Data folder moved successfully.
C:\Documents and Settings\Marketa\Data aplikací\PriceGong folder moved successfully.
File/Folder C:\Program Files\DAEMON Tools Toolbar not found.
C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy\Recovery folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy\Logs folder moved successfully.
C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy folder moved successfully.
File/Folder C:\Documents and Settings\Marketa\Data aplikací\*.tmp not found.
C:\Program Files\Spybot - Search & Destroy folder moved successfully.
C:\WINDOWS\tasks\AppleSoftwareUpdate.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2000478354-1677128483-682003330-1003Core.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2000478354-1677128483-682003330-1003UA.job moved successfully.
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.

OTM by OldTimer - Version 3.1.19.0 log created on 10262011_202546

Files moved on Reboot...

Registry entries deleted on Reboot...

[vyosek]

vytecne, jak se chova PC nyni

[makysekp]

zdá se, že normálně ....

[vyosek]

OTC http://oldtimer.geekstogo.com/OTC.exe

• Stahnete a spustte
• Kliknete na CleanUp a potvrdte YES
• Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

• Stahnete a spustte
• Kliknete na Start a potvrdte OK
• Program uklidi a restartuje pc
• Po pouziti utilitu smazte

T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe

• Stahnete a spustte
• Pro potvrzeni volby mackejte A, Enter
• Po pouziti utilitu smazte
• Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

Odinstalujte AVG a projedte to removerem jeste http://download.avg.com/filedir/util/su ... 1_1184.exe

Nainstalujte Avast Free http://www.avast.com/cs-cz/free-antivirus-download

Pro sichr udelame MBAM - poohledne se po haveti jeste

Stahnete Malwarebytes' Anti-Malware (zkracene MBAM) (viz muj podpis)

• Provedte aktualizaci
• Provedte uplny sken - nic nemazte
• MBAM miva obcas falesne detekce, proto vlozte log do prispevku a pockejte na posouzeni

[makysekp]

odinstalovavam prave AVG: mam odstranit i obsah viroveho trezoru?

[vyosek]

Ano, muzete...

Omlouvam se za prodlevu, byl jsem mimo...

[makysekp]

delam ted kompletni scan avastem a asi to bude do zitra....takze zrejme pro dnesek dekuji

[vyosek]

Kompletni sken Avastem nemusite, na to tam mame MBAM - ten je dukladnejsi...

Prozatim neni zac, je s vami skvela spoluprace

[makysekp]

Ještě se zeptám na jednu věc, můžu teď jeden z disků použít a připojit k notebooku? Nerada bych si ty disky zase zapr...sila, když nevím co v tom notebooku může být....Děkuji! Vypadá to fakt dobře

[vyosek]

Zalozte nove tema a do predmetu dejte "Pro vyosek" - kolegove mi to nechaji

Do prispevku dejte log z RSITu a USBFixu z notebooku (k notebooku nepripojujte zadny disk), jen tam pustte USBFix

Pak uvidime ci tam neco je nebo ne

[makysekp]

Dobrý den, děkuji předem i za dnešní pomoc

tady je log z MBAM:

Malwarebytes' Anti-Malware 1.50
www.malwarebytes.org

Verze databáze: 8028

Windows 5.1.2600 Service Pack 2
Internet Explorer 6.0.2900.2180

27.10.2011 10:08:47
mbam-log-2011-10-27 (10-08-42).txt

Typ kontroly: Rychlý test
Testované objekty: 159557
Uplynulý čas: 2 minut, 26 sekund

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 2
Infikované složky: 0
Infikované soubory: 0

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky v registru:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken.

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)

je to ze stolniho PC, notebook prave stahuje avast.

[vyosek]

Zdravim

Nalezy MBAMu smazte

MBAM muzete odinstalovat

zde bychom meli mit cisto, ntb uz jsem dal dalsi navod

mam ted nejake studini povinnosti a pak cestu z brna domu, takze tu budu az vecer, dekuji za strpeni a pochopeni