Prosim pomoc (userlist.exe) me zere CPU :(

[solda1]

Ahoj lidi...Mam problem..Mam v PC asi vir nebo neco nevim co to moze byt...Proste kdyz hraju hry kusne se to na chvili a pak zas v poho..Kdyz pozoruju v procesech co me zere tolik CPU tak cca po 1 min vzdy naskoci proces unserlist.exe a zas po 2 sekundach zase zmizi, ikdyz ho stihnu ukoncit obevi se tam zas a zas...PC jsem projel anitivirakem (nod 32 ) A odspamoval a proste porad to dela a jsem moc zoufalej...Mam verejne IP a FW nemam zaplej, ale ten sem nikdy nemel...Prosim moc o pomoc ...Dekuji vsem moc za ochotu

[solda1]

Dodavam, jsem v PC docela zacatecnik, takze potrebuju to vice vysvetlit..Kdyztak moje icq 262-693-388...Prosim napiste...dekuji moc...Jsem uz zoufalej

[likc]

Chce to ten log neboli vypis z tohoto programu, jak jsem ti psal. http://www.wilderssecurity.com/supportf ... ckThis.exe ten si stani a spust scan and save logfile.
Log se otevre v poznamkovem bloku a tak to zkopirujes ctrl+c a vlozis sem ctrl+v.

[kocourleo]

http://www.spywaredb.com/remove-hades/

Zkontroluj si i ostatní soubory v seznamu a pokud je tam máš, postupuj podle návodu. (Hades Removal Instructions) a svinstva se zbav.

PS: A firewall si nainstaluj, je důležitější než antivirák, jinak to tam budeš mít za chvíli nazpět.

[solda1]

Logfile of HijackThis v1.99.1
Scan saved at 12:51:01, on 15.4.2007
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
c:\windows\system32\dllcache\1396\ms-java.exe
C:\Program Files\Eset\nod32krn.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\system32\dllcache\1396\mssvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Eset\nod32kui.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\ICQLite\ICQLite.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\solda\Plocha\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://google.icq.com/search/search_frame.php
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://google.icq.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.centrum.cz/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQToolbar\toolbaru.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: MU Online Toolbar Helper - {D3138B39-C8A6-440B-9D42-50F766AEA8C7} - C:\Program Files\MU Online Toolbar\v3.2.0.0\MU_Online_Toolbar.dll (file missing)
O3 - Toolbar: &Rádio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQToolbar\toolbaru.dll
O3 - Toolbar: MU Online Toolbar - {B9D1647F-A66A-4695-B249-07901A45FF59} - C:\Program Files\MU Online Toolbar\v3.2.0.0\MU_Online_Toolbar.dll (file missing)
O4 - HKLM\..\Run: [ICQ Lite] "C:\Program Files\ICQLite\ICQLite.exe" -minimize
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [Steam] "c:\games\steam\steam.exe" -silent
O4 - HKCU\..\RunOnce: [ICQ Lite] C:\Program Files\ICQLite\ICQLite.exe -trayboot
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O8 - Extra context menu item: Add to AMV Converter... - C:\Program Files\MP3 Player Utilities 4.03\AMVConverter\grab.html
O8 - Extra context menu item: MediaManager tool grab multimedia file - C:\Program Files\MP3 Player Utilities 4.03\MediaManager\grab.html
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O16 - DPF: {CFCB7308-782F-11D4-BE27-000102598CE4} (NPX Control) - http://update.nprotect.net/nprotect/webzen/npx.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{87E337E1-0DAD-4612-8556-A8C72EE3B8DE}: NameServer = 62.240.178.250,62.240.161.226
O18 - Protocol: bw+0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\
O23 - Service: Ms-java - Unknown owner - c:\windows\system32\dllcache\1396\ms-java.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing)

[likc]

Zaprve by se docela siknul SP2 na windowsy a IE 6.
Pak firewall. Treba Comodo.

fixni (zaskrtni vedle radku v programu HJT a dej fix)
c:\windows\system32\dllcache\1396\ms-java.exe
C:\WINDOWS\system32\dllcache\1396\mssvc.exe
O2 - BHO: MU Online Toolbar Helper - {D3138B39-C8A6-440B-9D42-50F766AEA8C7} - C:\Program Files\MU Online Toolbar\v3.2.0.0\MU_Online_Toolbar.dll (file missing
O3 - Toolbar: MU Online Toolbar - {B9D1647F-A66A-4695-B249-07901A45FF59} - C:\Program Files\MU Online Toolbar\v3.2.0.0\MU_Online_Toolbar.dll (file missing)
O23 - Service: Ms-java - Unknown owner - c:\windows\system32\dllcache\1396\ms-java.exe

Vy jste se ted dva spolu domluvili, ne co mate s tim Logitech Desktop Messengerem? To pouzivas?
Jinac nikde nevidim ten userlist.exe. Pokud v pc najdes ty soubory, jak Ti posilal odkaz kocourleo, tak je smaz.
Az to udelas, posli novy log.

Uz jsem ten Logitech Desktop Messenger nasel. Podle me to muzes odinstalovat/zakazat, at se to nespousti. Jen to upozornuje na novinky a podobne.

[solda1]

ten userlist.exe se tam vzdycky ukaze a pak zas zmizi chapis? Jinak kdyz sem ho dal hledat tak byl jen v Prefetsh a ted uz ten souborv PC nemam !

[likc]

Ok. Fixni, co jsem Ti napsal, pokud mas "bezproblemovou" moznost aktualizace windowsu, pripadne si troufnes na tu "potencialne obtiznejsi", tak si dohraj service packy, pak ten firewall a budes OK.

[solda1]

Ok. Fixni, co jsem Ti napsal, pokud mas "bezproblemovou" moznost aktualizace windowsu, pripadne si troufnes na tu "potencialne obtiznejsi", tak si dohraj service packy, pak ten firewall a budes OK.

Promin, ale ja to fixovani nechapu..Neslo by to podrobneji ? FW staci jen zapnout ne ? TO nemusim instalovat..Bo musim ? Servise pack 2 si stahnu, ale jaxi nechapu to fixovani

[likc]

V tom programu, ktery jsi stahnul a udelal v nem ten log/vypis mas po proscanovani to samy, co je v tom logu i v okne toho programu. Vedle kazdyho radku je mala kosticka, zaskrtavaci okenko. Najdi ty radky, co jsem Ti vypsal, zaskrtni u nich tu kosticku a pak dole je tlacitko FIX. To zmackni a je to.

Ten firewall, co jsem Ti napsal, je program sam o sobe. Ve win sice firewall je, ale moc toho neumi... Neco o firewallech se doctes zde: http://viry.cz/forum/viewtopic.php?t=65 ... b226c523ee

[solda1]

Tak jsem to fixxl a kukam na procesy a uz tam neni ten userlist.exe....To je krasa mam radost......Dekuji mooooooooc za pomoc sou tu fakt chytri lidi...A ten FW jakej by si me doporucil ? Ja mam FW vypli proto, protoze hraju dotu a zakladam si svoji mapu a lidi se na me pripojuji...Kdybych ho mel zapli , tak by me nevideli...Jeste jednou moc diky...Jeste by se me hodila aktulizacka na moji graficku...Me se na Nvidia strankach nelibi, ze tam maj jen ty novejsi...Na mou GeForce 6600 +256 mb tam nemaj aktualizaci

[likc]

Vcelku se nam osvedcuje firewall Comodo. Ale je trosku slozitejsi na nastaveni. Povolovani portu prave pro ty hry a tak podobne. Urcite to pujde, ale navod Ti z rukavu nevysypu. Vyzkousej ho a uvidis. On se nejdriv nauci, jake programy pouzivas a zepta, jestli jim chces povolit pristup na net. Treba nebudes mit problem.
S tou grafarnou jedine najit neco googelem. Treba na ni zadna aktualizace neni. Pak by jsi jedine mohl pouzit nejaky graficky detonator. Ale to jen tak naokraj.

Jinac neni zac.

[solda1]

stahl jsem si Kerio a uz ho mam aktivniho...Jen se chci zeptat na jednu vec, kdyz ho mam ted v pravo dole ikonku mam ho aktivni, tak musim met zaply ten windowsovy ? Nebo oboje je jeste lepsi bo staci met zapli jen to Kerio ?

[Baron Prášil]

jestli máš dole u hodin ikonu keria a Centrum zabezpečení na tebe neřve,že běžej dva firewally,tak je to ok

ještě pošli kontrolní log a doladíme to

[solda1]

Logfile of HijackThis v1.99.1
Scan saved at 21:31:12, on 15.4.2007
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Eset\nod32kui.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\Program Files\Eset\nod32krn.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Documents and Settings\solda\Plocha\RefreshLock.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Opera\Opera.exe
C:\Program Files\ICQLite\ICQLite.exe
C:\Documents and Settings\solda\Plocha\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://google.icq.com/search/search_frame.php
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://google.icq.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.centrum.cz/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQToolbar\toolbaru.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O3 - Toolbar: &Rádio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQToolbar\toolbaru.dll
O4 - HKLM\..\Run: [ICQ Lite] "C:\Program Files\ICQLite\ICQLite.exe" -minimize
O4 - HKLM\..\Run: [NvCplDaemon] "RUNDLL32.EXE" C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] "nwiz.exe" /install
O4 - HKLM\..\Run: [NvMediaCenter] "RUNDLL32.EXE" C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [Steam] "c:\games\steam\steam.exe" -silent
O4 - HKCU\..\RunOnce: [ICQ Lite] C:\Program Files\ICQLite\ICQLite.exe -trayboot
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O8 - Extra context menu item: Add to AMV Converter... - C:\Program Files\MP3 Player Utilities 4.03\AMVConverter\grab.html
O8 - Extra context menu item: MediaManager tool grab multimedia file - C:\Program Files\MP3 Player Utilities 4.03\MediaManager\grab.html
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O16 - DPF: {CFCB7308-782F-11D4-BE27-000102598CE4} (NPX Control) - http://update.nprotect.net/nprotect/webzen/npx.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{87E337E1-0DAD-4612-8556-A8C72EE3B8DE}: NameServer = 62.240.178.250,62.240.161.226
O18 - Protocol: bw+0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {B08EC4D6-3CE1-41C9-BECA-72E3E4FAB6A5} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\
O20 - Winlogon Notify: WRNotifier - WRLogonNTF.dll (file missing)
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing)

[Baron Prášil]

oki

odpověď na tvojí otázku(proč si jí nepoložil tady?)

běž na viry.cz(nejvíc studijního materiálu),chňapni nějakej starší vyřešenej problém(log)a jeden proces po druhým si hoď do gůglu(první doporučuju světovej a nejdůvěryhodnější zdroje sou castlecops,liutilities,bleepingcomputer),když vygůglíš,že je ok,deš na další až narazíš na vykřičník(bleeping)prostě na šmejda,hodíš ho na českej gůgl a vyguglíš postup jak na něj.a až za půl hodiny uděláš celej log,tak buď zjistíš,že je to hroznej vopruz a že sme asi ujetý a budeš mít asi pravdu.
a nebo ne a v dalším logu kterej takhle prošmejdíš,už některý procesy budeš mít v hlavě.a tak pořád a tak dokola.pak si najdeš nějaký fórum,kde na tebe nebude moc vidět,budeš tam přicmrndávat a jednou chňapneš log a celej ho sám vyřešíš.
dvakrát gůgluj-jednou raď,když si nejsi jistej,nech userovi zkontrolovat on-line skenerem.
takže gůgl a paměť a trocha angličtiny,trpezlivosť a připravit se na to,že občas něco zvořeš.a že ti to dá někdo sežrat(tak si dávat pozor,aby si to nezvoral nějak fatálně )

http://viry.cz/forum/viewtopic.php?t=2230