poprosím o kontrolu logu
Napsal: 29 lis 2008 12:47
dobry den, doufam, ze mi bude take pomoci, jestli tu je nekdo ochotny...predem dik
Malwarebytes' Anti-Malware 1.30
Verze databáze: 1433
Windows 5.1.2600 Service Pack 3
29.11.2008 12:30:54
mbam-log-2008-11-29 (12-30-01).txt
Typ skenu: Rychlý sken
Objektu skenováno: 62954
Uplynulý cas: 35 minute(s), 7 second(s)
Infikované procesy pameti: 1
Infikované pametové moduly: 0
Infikované klíce registru: 15
Infikované hodnoty registru: 2
Infikované položky dat registru: 0
Infikované složky: 5
Infikované soubory: 11
Infikované procesy pameti:
C:\Program Files\WebMediaViewer\itunes.exe (Trojan.Zlob) -> No action taken.
Infikované pametové moduly:
(Žádné zákerné položky nebyly zjišteny)
Infikované klíce registru:
HKEY_CURRENT_USER\SOFTWARE\{5222008a-dd62-49c7-a735-7bd18ecc7350} (Rogue.VirusRemover) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\{5222008a-dd62-49c7-a735-7bd18ecc7350} (Rogue.VirusRemover) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{055fd26d-3a88-4e15-963d-dc8493744b1d} (Adware.BHO) -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\syslibrary (Rootkit.Srizbi) -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\syslibrary (Rootkit.Srizbi) -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\syslibrary (Rootkit.Srizbi) -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\syslibrary (Rootkit.Srizbi) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\virusremover2008 (Rogue.VirusRemove) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\virusremover2008 (Rogue.VirusRemove) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\virusremover2008 (Rogue.VirusRemove) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\NetProject (Trojan.Zlob) -> No action taken.
HKEY_CLASSES_ROOT\webmedia.chl (Trojan.Zlob) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Online Alert Manager (Trojan.Zlob) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ICF (Rootkit.Agent) -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ICF (Rootkit.Agent) -> No action taken.
Infikované hodnoty registru:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\ituneshelper module (Trojan.Zlob) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\virusremover2008 (Rogue.VirusRemove) -> No action taken.
Infikované položky dat registru:
(Žádné zákerné položky nebyly zjišteny)
Infikované složky:
C:\Program Files\NetProject (Trojan.Zlob) -> No action taken.
C:\Program Files\WebMediaViewer (Trojan.Zlob) -> No action taken.
C:\Program Files\VirusRemover2008 (Rogue.VirusRemove) -> No action taken.
C:\Documents and Settings\jindra\Data aplikací\VirusRemover2008 (Rogue.VirusRemover) -> No action taken.
C:\Documents and Settings\jindra\Data aplikací\VirusRemover2008\Logs (Rogue.VirusRemover) -> No action taken.
Infikované soubory:
C:\WINDOWS\system32\DefLib.sys (Rootkit.Srizbi) -> No action taken.
C:\4.tmp (Trojan.Dropper) -> No action taken.
C:\Downloads\AntieMalwareASGF.exe (Rogue.Installer) -> No action taken.
C:\Program Files\WebMediaViewer\itunes.exe (Trojan.Zlob) -> No action taken.
C:\Program Files\WebMediaViewer\itunesu.exe (Trojan.Zlob) -> No action taken.
C:\Program Files\VirusRemover2008\Viruses.bdt (Rogue.VirusRemove) -> No action taken.
C:\Program Files\VirusRemover2008\VRM2008.exe (Rogue.VirusRemove) -> No action taken.
C:\Documents and Settings\jindra\Data aplikací\VirusRemover2008\Logs\scns.log (Rogue.VirusRemover) -> No action taken.
C:\Documents and Settings\jindra\Plocha\VirusRemover2008.lnk (Rogue.VirusRemove) -> No action taken.
C:\Documents and Settings\jindra\Data aplikací\Microsoft\Internet Explorer\Quick Launch\VirusRemover2008.lnk (Rogue.VirusRemove) -> No action taken.
C:\Documents and Settings\jindra\Local Settings\Temp\xrg1.exe (Trojan.Zlob) -> No action taken.
/odděleno od jiného topicu. memphisto
Malwarebytes' Anti-Malware 1.30
Verze databáze: 1433
Windows 5.1.2600 Service Pack 3
29.11.2008 12:30:54
mbam-log-2008-11-29 (12-30-01).txt
Typ skenu: Rychlý sken
Objektu skenováno: 62954
Uplynulý cas: 35 minute(s), 7 second(s)
Infikované procesy pameti: 1
Infikované pametové moduly: 0
Infikované klíce registru: 15
Infikované hodnoty registru: 2
Infikované položky dat registru: 0
Infikované složky: 5
Infikované soubory: 11
Infikované procesy pameti:
C:\Program Files\WebMediaViewer\itunes.exe (Trojan.Zlob) -> No action taken.
Infikované pametové moduly:
(Žádné zákerné položky nebyly zjišteny)
Infikované klíce registru:
HKEY_CURRENT_USER\SOFTWARE\{5222008a-dd62-49c7-a735-7bd18ecc7350} (Rogue.VirusRemover) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\{5222008a-dd62-49c7-a735-7bd18ecc7350} (Rogue.VirusRemover) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{055fd26d-3a88-4e15-963d-dc8493744b1d} (Adware.BHO) -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\syslibrary (Rootkit.Srizbi) -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\syslibrary (Rootkit.Srizbi) -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\syslibrary (Rootkit.Srizbi) -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\syslibrary (Rootkit.Srizbi) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\virusremover2008 (Rogue.VirusRemove) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\virusremover2008 (Rogue.VirusRemove) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\virusremover2008 (Rogue.VirusRemove) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\NetProject (Trojan.Zlob) -> No action taken.
HKEY_CLASSES_ROOT\webmedia.chl (Trojan.Zlob) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Online Alert Manager (Trojan.Zlob) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ICF (Rootkit.Agent) -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ICF (Rootkit.Agent) -> No action taken.
Infikované hodnoty registru:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\ituneshelper module (Trojan.Zlob) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\virusremover2008 (Rogue.VirusRemove) -> No action taken.
Infikované položky dat registru:
(Žádné zákerné položky nebyly zjišteny)
Infikované složky:
C:\Program Files\NetProject (Trojan.Zlob) -> No action taken.
C:\Program Files\WebMediaViewer (Trojan.Zlob) -> No action taken.
C:\Program Files\VirusRemover2008 (Rogue.VirusRemove) -> No action taken.
C:\Documents and Settings\jindra\Data aplikací\VirusRemover2008 (Rogue.VirusRemover) -> No action taken.
C:\Documents and Settings\jindra\Data aplikací\VirusRemover2008\Logs (Rogue.VirusRemover) -> No action taken.
Infikované soubory:
C:\WINDOWS\system32\DefLib.sys (Rootkit.Srizbi) -> No action taken.
C:\4.tmp (Trojan.Dropper) -> No action taken.
C:\Downloads\AntieMalwareASGF.exe (Rogue.Installer) -> No action taken.
C:\Program Files\WebMediaViewer\itunes.exe (Trojan.Zlob) -> No action taken.
C:\Program Files\WebMediaViewer\itunesu.exe (Trojan.Zlob) -> No action taken.
C:\Program Files\VirusRemover2008\Viruses.bdt (Rogue.VirusRemove) -> No action taken.
C:\Program Files\VirusRemover2008\VRM2008.exe (Rogue.VirusRemove) -> No action taken.
C:\Documents and Settings\jindra\Data aplikací\VirusRemover2008\Logs\scns.log (Rogue.VirusRemover) -> No action taken.
C:\Documents and Settings\jindra\Plocha\VirusRemover2008.lnk (Rogue.VirusRemove) -> No action taken.
C:\Documents and Settings\jindra\Data aplikací\Microsoft\Internet Explorer\Quick Launch\VirusRemover2008.lnk (Rogue.VirusRemove) -> No action taken.
C:\Documents and Settings\jindra\Local Settings\Temp\xrg1.exe (Trojan.Zlob) -> No action taken.
/odděleno od jiného topicu. memphisto