TrojanClicker:Win32/Yabector.gen

[69pavel]

Dobry den vsem ve spolek.
Potreboval bych poradit.Mou neopatrnosti a blobosti jsem si stahl dva viry do compu.Prvni TrojanClicker:Win32/Yabector.gen a druhy Virtool:Win32VBInject.gen!BG.
Antivir je zachytil,presto se neco dostalo do systemu.Provedl jsem test antiviru nasel soubory a presunul do truhly,bohuzel ten jeden pri presunu selhal,nacez jsem provedl konmtrolu TrojanRemover, Spybot a Destroy -nasel polozky-presunuto do karanteny,pote nasledoval test SAS stazeny odsud,nasel -presunuto do karanteny,skusil jsem pro jistotu jeste Malwarebytes' Anti-Malware a taktez nasel-presunuto do karanteny,po restartu provedene testy vsech s negativnim vysledkem vcetne testu antiviru po restartu, proveden test on-line Live One Care negativni presto mi pretrvavaji problemy s compem, sam od sebe se zacne zatezovat procesor, a v webovym prohlizeci kdyz najizdim na stranky tak procesor 90-100% vytizen a stranky se dlouho nacitaji,pritom kdyz jsem skousel test rychlosti tak ukazalo normalni dle meho pripojeni.
Registry cistene C.Cleaner,GlarysoftUtilitesPro - pravidelne ,AshampooWinOptimizer6,Advanced SystemCare-stimto jsem skousel nektere upravy zda by mi nepomhly vyresit muj problem ale bohuzel nestalo se tak.
Muj os WinXPHome,pravidelne aktualizovan,antivir AvastPro,WindowsDefender,na defragmentaci pouzivam MagicalDefrag2,
(zalohu mam vytvorenou v Acronisu jenze tuto poskozenou),pokud vam budu muset neco posilat tak prosim polopaticky navod.idealni by bylo resit to pres skype.
Predem dekuji za vasi trpelivost.

[JaRon]

ahoj,
stiahni a uloz na plochu ComboFix

potom spust pod uctom s administratorskym opravnenim

stiskni klavesu 1 pre pokracovanie a potvrd klavesou Enter:



akcia trva cca. 5-10 minut, niekedy i dlhsie -, Pocas scanu nespustaj ziadne ine aplikacie

Nie je dovod na paniku ak stroj bude restartovany
upozornenie: ak pouzivas antispyware s rezidentnim stitem, ten pred scanom vypni.

po restarte aplikacie vytvori log, ulozeny na C:\Combofix.txt (jeho obsah vloz sem)

[69pavel]

ComboFix 09-11-09.02 - pavel 11.11.2009 12:34.1.1 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2047.1437 [GMT 1:00]
Spuštěný z: c:\documents and settings\pavel\Plocha\ComboFix.exe
AV: avast! antivirus 4.8.1356 [VPS 091110-1] *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\hoste\Local Settings\Temporary Internet Files\MAILTRAN.INI
c:\documents and settings\hoste\Local Settings\Temporary Internet Files\TRNCOM.INI
c:\windows\system32\Ijl11.dll

.
((((((((((((((((((((((((( Soubory vytvořené od 2009-10-11 do 2009-11-11 )))))))))))))))))))))))))))))))
.

2009-11-09 20:19 . 2009-09-10 13:54 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-11-09 20:19 . 2009-11-09 20:19 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-11-09 20:19 . 2009-09-10 13:53 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-11-09 18:43 . 2009-11-09 18:43 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2009-11-08 03:04 . 2006-06-19 11:01 69632 ----a-w- c:\windows\system32\ztvcabinet.dll
2009-11-08 03:04 . 2006-05-25 13:52 162304 ----a-w- c:\windows\system32\ztvunrar36.dll
2009-11-08 03:04 . 2005-08-25 23:50 77312 ----a-w- c:\windows\system32\ztvunace26.dll
2009-11-08 03:04 . 2003-02-02 18:06 153088 ----a-w- c:\windows\system32\UNRAR3.dll
2009-11-08 03:04 . 2002-03-05 23:00 75264 ----a-w- c:\windows\system32\unacev2.dll
2009-11-08 03:04 . 2009-11-08 03:10 -------- d-----w- c:\program files\Trojan Remover
2009-11-07 12:04 . 2009-11-07 12:08 -------- d-----w- c:\program files\Spybot - Search & Destroy
2009-10-26 16:43 . 2009-11-09 18:42 -------- d-----w- C:\Shoty
2009-10-26 16:42 . 2009-10-26 16:43 -------- d-----w- c:\program files\ScreenShots
2009-10-17 08:22 . 2009-10-17 08:35 -------- d-----w- c:\program files\PCNetSoftware
2009-10-16 12:09 . 2001-08-18 04:36 8704 -c--a-w- c:\windows\system32\dllcache\kbdjpn.dll
2009-10-16 12:09 . 2001-08-18 04:36 8704 ----a-w- c:\windows\system32\kbdjpn.dll
2009-10-16 12:09 . 2001-08-18 04:36 8192 -c--a-w- c:\windows\system32\dllcache\kbdkor.dll
2009-10-16 12:09 . 2001-08-18 04:36 8192 ----a-w- c:\windows\system32\kbdkor.dll
2009-10-16 12:09 . 2001-08-17 20:55 6144 -c--a-w- c:\windows\system32\dllcache\kbd101c.dll
2009-10-16 12:09 . 2001-08-17 20:55 6144 ----a-w- c:\windows\system32\kbd101c.dll
2009-10-16 12:09 . 2001-08-17 20:55 5632 -c--a-w- c:\windows\system32\dllcache\kbd103.dll
2009-10-16 12:09 . 2001-08-17 20:55 5632 ----a-w- c:\windows\system32\kbd103.dll
2009-10-16 12:09 . 2001-08-17 20:55 6144 -c--a-w- c:\windows\system32\dllcache\kbd101b.dll
2009-10-16 12:09 . 2001-08-17 20:55 6144 ----a-w- c:\windows\system32\kbd101b.dll
2009-10-16 12:09 . 2008-04-14 06:48 6144 -c--a-w- c:\windows\system32\dllcache\kbd106.dll
2009-10-16 12:09 . 2008-04-14 06:48 6144 ----a-w- c:\windows\system32\kbd106.dll
2009-10-15 02:32 . 2009-10-15 02:32 -------- d-----w- c:\windows\Hewlett-Packard

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-11-10 02:49 . 2009-07-17 19:57 -------- d-----w- c:\program files\SUPERAntiSpyware
2009-11-09 09:38 . 2009-08-01 13:25 -------- d-----w- c:\program files\Windows Live Safety Center
2009-11-08 14:03 . 2009-07-26 03:17 -------- d-----w- c:\program files\upm_4_1_3
2009-11-07 14:49 . 2009-07-16 19:25 -------- d-----w- c:\program files\Glary Utilities
2009-11-04 02:27 . 2009-07-16 19:36 -------- d-----w- c:\program files\Java
2009-11-04 02:27 . 2006-03-02 12:00 82552 ----a-w- c:\windows\system32\perfc005.dat
2009-11-04 02:27 . 2006-03-02 12:00 437832 ----a-w- c:\windows\system32\perfh005.dat
2009-11-02 19:42 . 2009-10-03 05:13 195456 ------w- c:\windows\system32\MpSigStub.exe
2009-10-18 07:43 . 2009-07-16 18:36 -------- d-----w- c:\program files\Common Files\Adobe
2009-10-15 02:32 . 2009-07-15 17:31 -------- d-----w- c:\program files\HP
2009-10-11 03:17 . 2009-07-16 19:36 411368 ----a-w- c:\windows\system32\deploytk.dll
2009-10-08 17:42 . 2009-10-08 17:42 -------- d-----w- c:\program files\TopCD
2009-09-15 11:59 . 2009-07-15 16:14 1279968 ----a-w- c:\windows\system32\aswBoot.exe
2009-09-15 11:56 . 2009-07-15 16:15 93424 ----a-w- c:\windows\system32\drivers\aswmon.sys
2009-09-15 11:56 . 2009-07-15 16:15 94160 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2009-09-15 11:55 . 2009-07-15 16:15 114768 ----a-w- c:\windows\system32\drivers\aswSP.sys
2009-09-15 11:55 . 2009-07-15 16:15 20560 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2009-09-15 11:54 . 2009-07-15 16:15 52368 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2009-09-15 11:54 . 2009-07-15 16:15 23152 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2009-09-15 11:53 . 2009-07-15 16:15 27408 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2009-09-15 11:53 . 2009-07-15 16:15 97480 ----a-w- c:\windows\system32\AvastSS.scr
2009-09-11 14:19 . 2008-04-14 06:51 136192 ----a-w- c:\windows\system32\msv1_0.dll
2009-09-04 21:05 . 2008-04-14 06:51 58880 ----a-w- c:\windows\system32\msasn1.dll
2009-08-29 07:58 . 2008-04-14 06:52 916480 ----a-w- c:\windows\system32\wininet.dll
2009-08-26 08:02 . 2008-04-14 06:52 247326 ----a-w- c:\windows\system32\strmdll.dll
2009-08-24 20:08 . 2009-09-26 21:17 28160 ----a-w- c:\windows\system32\DfSdkBt.exe
.

------- Sigcheck -------

[7] 2008-06-20 . AD978A1B783B5719720CFF204B666C8E . 361600 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3QFE\tcpip.sys
[7] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\system32\dllcache\tcpip.sys
[-] 2008-06-20 . CBEEBEB899E31EF52B962CB31FC8CA5C . 361600 . . [5.1.2600.5625] . . c:\windows\system32\drivers\tcpip.sys
[7] 2008-04-13 . 93EA8D04EC73A85DB02EB8805988F733 . 361344 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB951748$\tcpip.sys
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Glary Memory Optimizer"="c:\program files\Glary Utilities\memdefrag.exe" [2009-11-03 102712]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2009-10-12 2000112]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-07-16 39408]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"Shockwave Updater"="c:\windows\system32\Adobe\Shockwave 11\SwHelper_1150600.exe" [2009-06-05 468408]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-09-15 81000]
"DefragTaskBar"="c:\program files\Ashampoo\Ashampoo Magical Defrag 2\bin\defragTaskBar.exe" [2008-10-09 173408]
"Windows Defender"="c:\program files\Windows Defender\MSASCui.exe" [2006-11-03 866584]
"TrueImageMonitor.exe"="c:\program files\Acronis\TrueImageHome\TrueImageMonitor.exe" [2007-10-23 2615624]
"AcronisTimounterMonitor"="c:\program files\Acronis\TrueImageHome\TimounterMonitor.exe" [2007-10-23 906648]
"Acronis Scheduler2 Service"="c:\program files\Common Files\Acronis\Schedule2\schedhlp.exe" [2007-10-23 140568]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2009-07-14 86016]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-10-03 35696]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2009-09-04 935288]
"Malwarebytes Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2009-09-10 1312080]
"RTBatteryMeter"="c:\program files\VibrateGameDeviceDriver\RFPIcon.exe" [2003-01-16 49152]
"RTHDCPL"="RTHDCPL.EXE" - c:\windows\RTHDCPL.EXE [2009-07-20 18670592]
"BluetoothAuthenticationAgent"="bthprops.cpl" - c:\windows\system32\bthprops.cpl [2008-04-14 110592]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

c:\documents and settings\All Users\Nabˇdka Start\Programy\Po spuçtŘnˇ\
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2005-12-15 282624]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2009-09-03 14:21 548352 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-disabled]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe"
"TrojanScanner"=c:\program files\Trojan Remover\Trjscan.exe /boot
"BluetoothAuthenticationAgent"=rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
"RTBatteryMeter"=c:\program files\VibrateGameDeviceDriver\RFPIcon.exe

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqnrs08.exe"=
"c:\\Program Files\\uTorrent\\utorrent.exe"=
"c:\\Program Files\\ICQ6.5\\ICQ.exe"=
"c:\\Program Files\\Capcom\\MotoGP 08\\Launcher.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=

R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [15.7.2009 17:15 114768]
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV.SYS [15.1.2009 15:17 9968]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [15.1.2009 15:17 74480]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [15.7.2009 17:15 20560]
R2 ICQ Service;ICQ Service;c:\program files\ICQ6Toolbar\ICQ Service.exe [19.7.2009 8:38 222456]
R2 WinDefend;Windows Defender;c:\program files\Windows Defender\MsMpEng.exe [3.11.2006 18:19 13592]
R3 SASENUM;SASENUM;c:\program files\SUPERAntiSpyware\SASENUM.SYS [15.1.2009 15:17 7408]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [7.8.2009 19:27 1684736]
S3 DfSdkS;Defragmentation-Service;c:\program files\Ashampoo\Ashampoo WinOptimizer 6\DfSdkS.exe [26.9.2009 22:17 406016]
S3 DynCal;Dynamic Calibration Service;c:\windows\system32\drivers\DynCal.sys [7.11.2007 18:15 12928]

--- Ostatní služby/ovladače v paměti ---

*NewlyCreated* - MBR
*NewlyCreated* - PROCEXP113
*Deregistered* - mbr
*Deregistered* - PROCEXP113
.
Obsah adresáře 'Naplánované úlohy'

2009-11-11 c:\windows\Tasks\GlaryInitialize.job
- c:\program files\Glary Utilities\initialize.exe [2009-07-16 09:21]

2009-11-09 c:\windows\Tasks\GlaryOneClickOptimizer.job
- c:\program files\Glary Utilities\oneclickoptimizer.exe [2009-07-16 09:21]

2009-11-11 c:\windows\Tasks\MP Scheduled Scan.job
- c:\program files\Windows Defender\MpCmdRun.exe [2006-11-03 17:20]

2009-10-30 c:\windows\Tasks\User_Feed_Synchronization-{7CD84F35-5BA3-4426-8450-E7462964E02E}.job
- c:\windows\system32\msfeedssync.exe [2009-03-08 02:31]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: {{7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\windows\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\windows\WebIE.dll
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

HKCU-Run-fsm - (no file)
MSConfigStartUp-CTFMON - (no file)



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-11-11 12:41
Windows 5.1.2600 Service Pack 3 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************

Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net

device: opened successfully
user: MBR read successfully
called modules: ntkrnlpa.exe catchme.sys CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys spak.sys >>UNKNOWN [0x8A80A938]<<
kernel: MBR read successfully
user & kernel MBR OK
Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net

atapi.sys @ 0x0 0x0 bytes

\Driver\atapi [ IRP_MJ_CREATE ] 0xA6F2 != 0xB7E22B40 atapi.sys
\Driver\atapi [ IRP_MJ_CLOSE ] 0xA6F2 != 0xB7E22B40 atapi.sys
\Driver\atapi [ IRP_MJ_DEVICE_CONTROL ] 0xA712 != 0xB7E22B40 atapi.sys
\Driver\atapi [ IRP_MJ_INTERNAL_DEVICE_CONTROL ] 0x6852 != 0xB7E22B40 atapi.sys
\Driver\atapi [ IRP_MJ_POWER ] 0xA73C != 0xB7E22B40 atapi.sys
\Driver\atapi [ IRP_MJ_SYSTEM_CONTROL ] 0x11336 != 0xB7E22B40 atapi.sys
\Driver\atapi IRP hooks detected !

**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'winlogon.exe'(1412)
c:\program files\SUPERAntiSpyware\SASWINLO.dll

- - - - - - - > 'lsass.exe'(1468)
c:\windows\system32\relog_ap.dll
.
Celkový čas: 2009-11-11 12:43
ComboFix-quarantined-files.txt 2009-11-11 11:43

Před spuštěním: Volných bajtů: 38 645 329 920
Po spuštění: Volných bajtů: 38 800 760 832

WindowsXP-KB310994-SP2-Home-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect

- - End Of File - - 3E4E2318B02DA9F670B81A3442CA5953


EDIT : chtelo to nainstalovat konzoli tak jsem to povolil naainstalovat

[JaRon]

otestuj tieto 3 subory na www.virustotal.com - ak uz boli testovane, daj otestovat nanovo:
c:\windows\system32\dllcache\tcpip.sys
c:\windows\system32\drivers\tcpip.sys
c:\windows\$NtUninstallKB951748$\tcpip.sys
ak budu ciste, napis len 0/41

[69pavel]

smazat prispevek

[69pavel]

smazat prispevek

[69pavel]

tak prvni soubor vysledek 0/41


druhy soubor vysledek 0/41


tak treti 0/41

[JaRon]

cize vsetky su ciste - preventivne mozes PC prescanovat s http://support.f-secure.com/enu/home/ols.shtml
+
poodinstaluvaj tie rozne cistice - vsetkeho vela skodi nachaj z kazdeho druhu jeden kus

[69pavel]

cize vsetky su ciste - preventivne mozes PC prescanovat s http://support.f-secure.com/enu/home/ols.shtml
+
poodinstaluvaj tie rozne cistice - vsetkeho vela skodi nachaj z kazdeho druhu jeden kus

co mi doporucis dat pryc

[JaRon]

c:\program files\Trojan Remover
c:\program files\Spybot - Search & Destroy
c:\program files\Glary Utilities
c:\program files\Windows Defender
ak nieco nepojde odinstalovat, tak aspon vypni ako sluzbu

[69pavel]

sken probehl a nasel 3 polozky tracing cookie a smazal

a ktem programum trojan remover dam pryc mel jsem ho jen na testovani,spybot to same,glary utilites mam vyply akorat mam pustenou sluzbu na uvolneni pameti jinak mi nebezi jo vlastne kazdy den uklid,tak to povypinam,a ten win defender mi nahradi SAS?

[69pavel]

tak jsem odinstaloval Trojan remover,windows defender ,spybot a destroy a glarysoft jsem povypinal,

co stim combofixim na plose-mam ho smazat?

a jeste se chci zeptat da se nekde nastavit vychozi hodnoty pripojeni k netu, porad trva nez najede stranka ale procesor uz nezatezuje

[JaRon]

ano ComboFix mozes zmazat, taktiez adresar c:\Qoobox
neviem, ci myslis toto: Nastroje - moznosti internetu >> v MSIE

[69pavel]

mel jsem na mysli,jak jsou ruzna pripojeni kabel adsl,wifi,lan, tak se upravujou nektera nastaveni,program advanced system care to ma v sobe,jen ja si nejsem jisty jaky mam typ pripojeni,beru signal od souseda , on ma privod telecom kabel-jde to pres router do vysilace-ja to prijimam do routru a zneho mi vede kabel do pocitace , tak nevim jestli mam dal adsl nebo lan.

[JaRon]

asi lan