anonym

Jak se zbavit content.yieldmanager.com vyskakujících okének?

Nevím jak se mi tento adware dostal do PC ale stále mi ted vyskakují okénka s reklamou v rohu obrazovky při jakékoliv aktualizaci stánek.
V Explorer 8 jsem se toho zbavila jedním programem pro FireFox předělaným pro Explorery. Ted mám ale Explorer 9 a adware je tu zas.
Dočetla jsem se, že je to něco v cookie, ale ani po smazaní jsem se adwaru nezbavila.
Našla jsem taky jeden program názvem SpyHunt, který našel ony články adwaru, ale abych to s pomocí tohohle programu smazala, tak si Spyhunt musím koupit a zaregistrovat, takže to mi je taky na nic :(
Nevíte někdo co s tím?
Doplňuji:
Bedy:
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:28:52, on 22.10.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16450)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe
c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe
c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
C:\Program Files (x86)\DigitalPersona\Bin\DpAgent.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser₃₂.exe
C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe
C:\Program Files (x86)\Windows Live\Companion\companionuser.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Users\xxx\Desktop\HijackThis.exe

R1 – HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=cs_CZ&c=94&bd=Pavilion&pf=cnnb
R1 – HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 – HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://translate.google.com/#/
R1 – HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=cs_CZ&c=94&bd=Pavilion&pf=cnnb
R1 – HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 – HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 – HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com/?st=1&crg=3.1010000.10005&barid={652D5FFD-095C-11E2–9145–00158307CFF9}
R0 – HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 – HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 – HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 – HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 – HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 – URLSearchHook: (no name) – – (no file)
R3 – URLSearchHook: (no name) – {00A6FAF6–072E-44cf-8957–5838F569A31D} – C:\Program Files (x86)\MyWebSearch\bar\2.bin\MWSSRCAS.DLL
R3 – URLSearchHook: SweetIM ToolbarURLSearchHook Class – {EEE6C35D-6118–11DC-9C72–001320C79847} – C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
F2 – REG:system.ini: UserInit=userinit.exe
O1 – Hosts: ::1 localhost
O1 – Hosts: 66.232.114.203 www.google-analytics.com.
O1 – Hosts: 66.232.114.203 ad-emea.doubleclick.net.
O1 – Hosts: 66.232.114.203 www.statcounter.com.
O1 – Hosts: 108.163.215.51 www.google-analytics.com.
O1 – Hosts: 108.163.215.51 ad-emea.doubleclick.net.
O1 – Hosts: 108.163.215.51 www.statcounter.com.
O2 – BHO: MyWebSearch Search Assistant BHO – {00A6FAF1–072E-44cf-8957–5838F569A31D} – C:\Program Files (x86)\MyWebSearch\bar\2.bin\MWSSRCAS.DLL
O2 – BHO: mwsBar BHO – {07B18EA1-A523–4961-B6BB-170DE4475CCA} – C:\Program Files (x86)\MyWebSearch\bar\2.bin\MWSBAR.DLL
O2 – BHO: AcroIEHelperStub – {18DF081C-E8AD-4283-A596-FA578C2EBDC3} – C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 – BHO: Ironsource LTD Helper Object – {25927741–5E5B-4D27–8D8B-9188FE64373F} – C:\Program Files (x86)\Ironsource\searchya\1.5.13.0\bh\searchya.dll
O2 – BHO: DigitalPersona Personal Extension – {395610AE-C624–4f58-B89E-23733EA00F9A} – C:\Program Files (x86)\DigitalPersona\Bin\DpOtsPluginIe8.dll
O2 – BHO: Groove GFS Browser Helper – {72853161–30C5–4D22-B7F9–0BBC1D38A37E} – C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 – BHO: Java™ Plug-In SSV Helper – {761497BB-D6F0–462C-B6EB-D4DAF1D92D43} – C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
O2 – BHO: Pomocná služba pro přihlášení ke službě Windows Live ID – {9030D464–4C02–4ABF-8ECC-5164760863C6} – C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 – BHO: Windows Live Messenger Companion Helper – {9FDDE16B-836F-4806-AB1F-1455CBEFF289} – C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 – BHO: Google Toolbar Helper – {AA58ED58–01DD-4d91–8333-CF10577473F7} – C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar₃₂.dll
O2 – BHO: Google Toolbar Notifier BHO – {AF69DE43–7D58–4638-B6FA-CE66B5AD205D} – C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.7529.1424\swg.dll
O2 – BHO: Java™ Plug-In 2 SSV Helper – {DBC80044-A445–435b-BC74–9C25C1C588A9} – C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
O2 – BHO: SWEETIE – {EEE6C35C-6118–11DC-9C72–001320C79847} – C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O2 – BHO: SimpleAdblock Class – {FFCB3198–32F3–4E8B-9539–4324694ED664} – C:\Program Files (x86)\Common Files\Simple Adblock\SimpleAdblock.dll
O3 – Toolbar: My Web Search – {07B18EA9-A523–4961-B6BB-170DE4475CCA} – C:\Program Files (x86)\MyWebSearch\bar\2.bin\MWSBAR.DLL
O3 – Toolbar: SearchYa Toolbar – {33AA308B-B565–4376-AC66–59EE9B6AD13E} – C:\Program Files (x86)\Ironsource\searchya\1.5.13.0\searchyaTlbr.dll
O3 – Toolbar: Google Toolbar – {2318C2B1–4965–11d4–9B18–009027A5CD4F} – C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar₃₂.dll
O3 – Toolbar: SweetPacks Toolbar for Internet Explorer – {EEE6C35B-6118–11DC-9C72–001320C79847} – C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O4 – HKLM\..\Run: [StartCCC] „C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe“ MSRun
O4 – HKLM\..\Run: [DpAgent] C:\Program Files (x86)\DigitalPersona\Bin\dpagent.exe
O4 – HKLM\..\Run: [QlbCtrl.exe] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 – HKLM\..\Run: [UpdatePRCShortCut] „C:\Program Files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe“ „C:\Program Files (x86)\Hewlett-Packard\Recovery“ UpdateWithCreateOnce „Software\CyberLink\PowerRecover“
O4 – HKLM\..\Run: [WirelessAssistant] C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 – HKLM\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~2\MYWEBS~1\bar\2.bin\mwsoemon.exe
O4 – HKLM\..\Run: [GrooveMonitor] „C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe“
O4 – HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 – HKLM\..\Run: [Adobe Reader Speed Launcher] „C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe“
O4 – HKLM\..\Run: [Adobe ARM] „C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe“
O4 – HKLM\..\Run: [My Web Search Bar Search Scope Monitor] „C:\PROGRA~2\MYWEBS~1\bar\2.bin\m3SrchMn.exe“ /m=2 /w /h
O4 – HKLM\..\Run: [SunJavaUpdateSched] „C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe“
O4 – HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 – HKCU\..\Run: [msnmsgr] „C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe“ /background
O4 – HKCU\..\Run: [Skype] „C:\Program Files (x86)\Skype\Phone\Skype.exe“ /minimized /regrun
O4 – HKCU\..\Run: [Advanced SystemCare 5] „C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe“ /AutoStart
O4 – HKCU\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~2\MYWEBS~1\bar\2.bin\mwsoemon.exe
O4 – HKUS\S-1–5–19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User ‚LOCAL SERVICE‘)
O4 – HKUS\S-1–5–19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User ‚LOCAL SERVICE‘)
O4 – HKUS\S-1–5–20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User ‚NETWORK SERVICE‘)
O4 – HKUS\S-1–5–20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User ‚NETWORK SERVICE‘)
O4 – Global Startup: Bluetooth.lnk = ?
O8 – Extra context menu item: Download with &Media Finder – C:\Program Files (x86)\Media Finder\hook.html
O8 – Extra context menu item: E&xportovat do aplikace Microsoft Excel – res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 – Extra context menu item: Odeslat obrázek do zařízení &Bluetooth… – C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 – Extra context menu item: Odeslat stránku do zařízení &Bluetooth… – C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 – Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,–600 – {0000036B-C524–4050–81A0–243669A86B9F} – C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 – Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,–1004 – {219C3416–8CB2–491a-A3C7-D9FCDDC9D600} – C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 – Extra ‚Tools‘ menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,–1003 – {219C3416–8CB2–491a-A3C7-D9FCDDC9D600} – C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 – Extra button: Odeslat do aplikace OneNote – {2670000A-7350–4f3c-8081–5663EE0C6C49} – C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 – Extra ‚Tools‘ menuitem: Od&eslat do aplikace OneNote – {2670000A-7350–4f3c-8081–5663EE0C6C49} – C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 – Extra button: ICQ7.7 – {77F665FD-3F60–4B0A-AE14-EC124B7A7FCE} – C:\Program Files (x86)\ICQ7.7\ICQ.exe
O9 – Extra ‚Tools‘ menuitem: ICQ7.7 – {77F665FD-3F60–4B0A-AE14-EC124B7A7FCE} – C:\Program Files (x86)\ICQ7.7\ICQ.exe
O9 – Extra button: Research – {92780B25–18CC-41C8-B9BE-3C9C571A8263} – C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 – Extra button: Odeslat do zařízení Bluetooth – {CCA281CA-C863–46ef-9331–5C8D4460577F} – C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 – Extra ‚Tools‘ menuitem: Odeslat do zařízení &Bluetooth… – {CCA281CA-C863–46ef-9331–5C8D4460577F} – C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 – Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 – Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 – Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 – DPF: {8AD9C840–044E-11D1-B3E9–00805F499D93} (Java Plug-in 10.5.1) – http://javadl-esd.sun.com/update/1.7.0/jinstall-7u5-windows-i586.cab
O16 – DPF: {A93B47FD-9BF6–4DA8–97FC-9270B9D64A6C} (VaPgCtrl Class) – http://217.196.216.21:8080/plugin/h263ctrl.cab
O18 – Protocol: grooveLocalGWS – {88FED34C-F0CA-4636-A375–3CB6248B04CD} – C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 – Protocol: skype4com – {FFC8B962–9B40–4DFF-9458–1830C7DD7F5D} – C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 – Protocol: wlpg – {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} – C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 – Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) – Adobe Systems Incorporated – C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 – Service: Advanced SystemCare Service 5 (AdvancedSystemCareService5) – IObit – C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCService.exe
O23 – Service: Andrea ST Filters Service (AESTFilters) – Andrea Electronics Corporation – C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe
O23 – Service: @%SystemRoot%\system32\Alg.exe,–112 (ALG) – Unknown owner – C:\Windows\System32\alg.exe (file missing)
O23 – Service: AMD External Events Utility – Unknown owner – C:\Windows\system32\atiesrxx.exe (file missing)
O23 – Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) – Apple Computer, Inc. – C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 – Service: Bluetooth Service (btwdins) – Broadcom Corporation. – C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 – Service: Com4QLBEx – Hewlett-Packard Development Company, L.P. – C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 – Service: @C:\Program Files (x86)\DigitalPersona\Bin\DpHostW.exe,–128 (DpHost) – DigitalPersona, Inc. – C:\Program Files (x86)\DigitalPersona\Bin\DpHostW.exe
O23 – Service: @%SystemRoot%\system32\efssvc.dll,–100 (EFS) – Unknown owner – C:\Windows\System32\lsass.exe (file missing)
O23 – Service: @%systemroot%\system32\fxsresm.dll,–118 (Fax) – Unknown owner – C:\Windows\system32\fxssvc.exe (file missing)
O23 – Service: FLEXnet Licensing Service – Macrovision Europe Ltd. – C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 – Service: GameConsoleService – WildTangent, Inc. – C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
O23 – Service: Služba Google Update (gupdate) (gupdate) – Google Inc. – C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 – Service: Služba Google Update (gupdatem) (gupdatem) – Google Inc. – C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 – Service: Google Software Updater (gusvc) – Google – C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 – Service: HP Health Check Service – Hewlett-Packard – C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 – Service: hpqwmiex – Hewlett-Packard Development Company, L.P. – C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 – Service: HP Service (hpsrv) – Unknown owner – C:\Windows\system32\Hpservice.exe (file missing)
O23 – Service: @keyiso.dll,–100 (KeyIso) – Unknown owner – C:\Windows\system32\lsass.exe (file missing)
O23 – Service: LightScribeService Direct Disc Labeling Service (LightScribeService) – Hewlett-Packard Company – C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 – Service: @comres.dll,–2797 (MSDTC) – Unknown owner – C:\Windows\System32\msdtc.exe (file missing)
O23 – Service: My Web Search Service (MyWebSearchService) – Unknown owner – C:\PROGRA~2\MYWEBS~1\bar\2.bin\mwssvc.exe (file missing)
O23 – Service: @%SystemRoot%\System32\netlogon.dll,–102 (Netlogon) – Unknown owner – C:\Windows\system32\lsass.exe (file missing)
O23 – Service: @%systemroot%\system32\psbase.dll,–300 (ProtectedStorage) – Unknown owner – C:\Windows\system32\lsass.exe (file missing)
O23 – Service: Cyberlink RichVideo Service(CRVS) (RichVideo) – Unknown owner – C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 – Service: @%systemroot%\system32\Locator.exe,–2 (RpcLocator) – Unknown owner – C:\Windows\system32\locator.exe (file missing)
O23 – Service: @%SystemRoot%\system32\samsrv.dll,–1 (SamSs) – Unknown owner – C:\Windows\system32\lsass.exe (file missing)
O23 – Service: SearchAnonymizer – Unknown owner – C:\Users\xxx\AppData\Roaming\OCS\SM\SearchAnonymizerHelper.exe
O23 – Service: Skype Updater (SkypeUpdate) – Skype Technologies – C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 – Service: @%SystemRoot%\system32\snmptrap.exe,–3 (SNMPTRAP) – Unknown owner – C:\Windows\System32\snmptrap.exe (file missing)
O23 – Service: @%systemroot%\system32\spoolsv.exe,–1 (Spooler) – Unknown owner – C:\Windows\System32\spoolsv.exe (file missing)
O23 – Service: @%SystemRoot%\system32\sppsvc.exe,–101 (sppsvc) – Unknown owner – C:\Windows\system32\sppsvc.exe (file missing)
O23 – Service: Audio Service (STacSV) – IDT, Inc. – C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\STacSV64.exe
O23 – Service: TabletServicePen – Wacom Technology, Corp. – C:\Program Files\Tablet\Pen\Pen_Tablet.exe
O23 – Service: Wacom Consumer Touch Service (TouchServicePen) – Wacom Technology, Corp. – C:\Program Files\Tablet\Pen\Pen_TouchService.exe
O23 – Service: @%SystemRoot%\system32\ui0detect.exe,–101 (UI0Detect) – Unknown owner – C:\Windows\system32\UI0Detect.exe (file missing)
O23 – Service: @%SystemRoot%\system32\vaultsvc.dll,–1003 (VaultSvc) – Unknown owner – C:\Windows\system32\lsass.exe (file missing)
O23 – Service: Validity VCS Fingerprint Service (vcsFPService) – Validity Sensors, Inc. – C:\Windows\system32\vcsFPService.exe
O23 – Service: @%SystemRoot%\system32\vds.exe,–100 (vds) – Unknown owner – C:\Windows\System32\vds.exe (file missing)
O23 – Service: @%systemroot%\system32\vssvc.exe,–102 (VSS) – Unknown owner – C:\Windows\system32\vssvc.exe (file missing)
O23 – Service: @%SystemRoot%\system32\Wat\WatUX.exe,–601 (WatAdminSvc) – Unknown owner – C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 – Service: @%systemroot%\system32\wbengine.exe,–104 (wbengine) – Unknown owner – C:\Windows\system32\wbengine.exe (file missing)
O23 – Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,–110 (wmiApSrv) – Unknown owner – C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 – Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,–101 (WMPNetworkSvc) – Unknown owner – C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file – 17742 bytes

Uzamčená otázka

ohodnoťte nejlepší odpověď symbolem palce

Upravil/a: anonym

Odpovědět

Zajímavá 0 před 4203 dny

Sledovat Nahlásit

Diskuze: napište první příspěvek

Nejlepší odpověď

Bedy

Na tohle je nejlepší použít Hijackthis.
Hijackthis stáhnete zde: http://sourceforge.net/projects/hjt/files/latest/download Program uložte, spusťte, klikněte na Do a system scan and save logfile. Po kontrole se objeví Poznámkový blok. Celý obsah toho otevřeného Poznámkového bloku zkopírujte a vložte sem.
Doplňuji:
Máte ten Internet explorer a počítač vůbec celý zakálený reklamním softwarem, některé věci jsou podezřelé. Takže to tedy vyčistíme, spusťte si tedy Hijackthis, klikněte na Do a system scan only a zaškrtejte následující položky:
R1 – HKCU\Software\Microsoft\Intern et Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com… – únos prohlížeče
R0 – HKCU\Software\Microsoft\Intern et Explorer\Main,Start Page = http://translate.google.com… – zřejmě taky únos prohlížeče
R1 – HKLM\Software\Microsoft\Intern et Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com… – únos prohlížeče
R0 – HKLM\Software\Microsoft\Intern et Explorer\Main,Start Page = http://home.sweetim.com… – únos prohlížeče
R3 – URLSearchHook: (no name) – – (no file) – nebezpečné
R3 – URLSearchHook: (no name) – {00A6FAF6– 072E- 44cf- 8957– 5838F569A31D} – C:\Program Files (x86)\MyWebSearch\bar\2. bin\MWSSRCAS. DLL – únos prohlížeče, nebezpečné
R3 – URLSearchHook: SweetIM ToolbarURLSearchHook Class – {EEE6C35D- 6118– 11DC- 9C72– 001320C79847} – C:\Program Files (x86)\SweetIM\Toolbars\Interne t Explorer\mgHelper.dll – únos prohlížeče, nebezpečné
O1 – Hosts: 66.232.114.203 www.google-analytics.com. – podezřelé
O1 – Hosts: 66.232.114.203 ad-emea.doubleclick.net. – --
O1 – Hosts: 66.232.114.203 www.statcounter.com. – --
O1 – Hosts: 108.163.215.51 www.google-analytics.com.
O1 – Hosts: 108.163.215.51 ad-emea.doubleclick.net.
O1 – Hosts: 108.163.215.51 www.statcounter.com.
O2 – BHO: MyWebSearch Search Assistant BHO – {00A6FAF1– 072E- 44cf- 8957– 5838F569A31D} – C:\Program Files (x86)\MyWebSearch\bar\2. bin\MWSSRCAS. DLL
O2 – BHO: mwsBar BHO – {07B18EA1– A523– 4961– B6BB- 170DE4475CCA} – C:\Program Files (x86)\MyWebSearch\bar\2. bin\MWSBAR. DLL
O2 – BHO: Ironsource LTD Helper Object – {25927741– 5E5B- 4D27– 8D8B- 9188FE64373F} – C:\Program Files (x86)\Ironsource\searchya\1. 5. 13. 0\bh\searchya. dll
O2 – BHO: DigitalPersona Personal Extension – {395610AE- C624– 4f58– B89E- 23733EA00F9A} – C:\Program Files (x86)\DigitalPersona\Bin\DpOts PluginIe8. dll
O2 – BHO: Google Toolbar Helper – {AA58ED58– 01DD- 4d91– 8333– CF10577473F7} – C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar₃₂.dll
O2 – BHO: Google Toolbar Notifier BHO – {AF69DE43– 7D58– 4638– B6FA- CE66B5AD205D} – C:\Program Files (x86)\Google\GoogleToolbarNoti fier\5. 7. 7529. 1424\swg. dll
O2 – BHO: SWEETIE – {EEE6C35C- 6118– 11DC- 9C72– 001320C79847} – C:\Program Files (x86)\SweetIM\Toolbars\Interne t Explorer\mgToolbarIE.dll
O3 – Toolbar: My Web Search – {07B18EA9– A523– 4961– B6BB- 170DE4475CCA} – C:\Program Files (x86)\MyWebSearch\bar\2. bin\MWSBAR. DLL
O3 – Toolbar: SearchYa Toolbar – {33AA308B- B565– 4376– AC66– 59EE9B6AD13E} – C:\Program Files (x86)\Ironsource\searchya\1. 5. 13. 0\searchyaTlbr. dll
O3 – Toolbar: Google Toolbar – {2318C2B1– 4965– 11d4– 9B18– 009027A5CD4F} – C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar₃₂.dll
O3 – Toolbar: SweetPacks Toolbar for Internet Explorer – {EEE6C35B- 6118– 11DC- 9C72– 001320C79847} – C:\Program Files (x86)\SweetIM\Toolbars\Interne t Explorer\mgToolbarIE.dll
O4 – HKLM\..\Run: [MyWebSearch Email Plugin] C: \PROGRA~2\MYWEBS~1\bar\2. bin\mwsoemon. exe
O4 – HKLM\..\Run: [My Web Search Bar Search Scope Monitor] „C: \PROGRA~2\MYWEBS~1\bar\2. bin\m3SrchMn. exe“ /m=2 /w /h
O4 – HKCU\..\Run: [MyWebSearch Email Plugin] C: \PROGRA~2\MYWEBS~1\bar\2. bin\mwsoemon. exe
O23 – Service: My Web Search Service (MyWebSearchService) – Unknown owner – C: \PROGRA~2\MYWEBS~1\bar\2. bin\mwssvc. exe (file missing)

Pak klikněte na tlačítko Fix checked. Nezapomeňte zavřít všechny spuštěné programy!
Nyní přejděte do Start-Ovládací panely-programy a funkce a odinstalujte následující programy:
Google toolbar, MyWebSearch bar, SearchYa Toolbar, SweetPacks Toolbar a všechno ostatní, kde uvidíte slovo toolbar.
Doporučuju přestat používat a odinstalovat i Advanced Systemcare – je to agresivní čistič, může způsobovat různé problémy. Použijte raději bezpečnější CCleaner (při instalaci odmítnout Google toolbar/chrome) a na defragmentaci disku buď systémový program Defragmentace disku (najdete v Start-Programy-Příslušenství-Systémové nástroje) nebo program Defraggler (při instalaci odmítnout Google toolbar/chrome).

Nezapomeňte aktualizovat následující programy (před stažením/při instalaci odmítněte Google chrome/toolbar, McAfee Sec. Scan Plus a jiný nevyžádaný reklamní software):
Adobe Reader (vyberte verzi 11.0) – http://get.adobe.com/cz/reader/otherversions/
Adobe Flash Player – http://get.adobe.com/cz/flashplayer/otherversions/
Adobe Shockwave (nainstalovat verzi Full IE) – Java – http://get.adobe.com/shockwave/otherversions/

Upravil/a: Bedy