Prosím o kontrolu - NOD32 nalezl Win32/Agent trojský kůň

martin.efres · Příspěvekod **martin.efres** » 18 dub 2010 13:34

Ahoj , prosil bych o kontrolu logu ..ESET NOD32 Antivirus 4 mi nalezl nebezpecny malware Win32/Agent trojský kuň v instalačním souboru Screenshots.exe. Před necelou minutou mi nalezl NOD32 dalši virus Win32/Agent..tentokrát v souboru Alcohol_120.rar. Prosím o dezinfekci tohoto malwaru.

Logfile of Trend Micro HijackThis v2.0.3 (BETA)
Scan saved at 13:18, on 2010-04-18
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\Common Files\BinarySense\hldasvc.exe
C:\Program Files\Common Files\BinarySense\hldasvc.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Steam\Steam.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Program Files\TrendMicro\HiJackThis\HiJackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: QIP 2005 - {1EF681F7-A04B-4D6D-9012-A307CCA55610} - C:\Program Files\QIP\qip.exe (HKCU)
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 6781085453
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HDDlife HDD Access service - BinarySense, Inc. - C:\Program Files\Common Files\BinarySense\hldasvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Unknown owner - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe

--
End of file - 6956 bytes

Reklama

bledulka · Příspěvekod **bledulka** » 18 dub 2010 14:01

Ahoj,

Stahni ATF Cleaner http://www.slunecnice.cz/sw/atf-cleaner/
- Na záložce main zaškrtni All users temp a potvrď Empty selected

Stahni Rsit http://images.malwareremoval.com/random/RSIT.exe
-spusť, klikni na tlačítko Continue
-po skenu na tebe vyběhne log.txt,obsah vlož zde

Stahni Mbam http://dw.com.com/redir?edId=3&siteId=4 ... l-10804572
-nainstaluj, aktualizuj
-udělej uplný sken a vlož sem log
-zatím nic nemaž, občas má falešné detekce

Ten instalační soubor Screenshots.exe otestuj na http://www.virustotal.com

martin.efres · Příspěvekod **martin.efres** » 18 dub 2010 15:10

Sorry..ale radeji bych pockal na nekoho z teamu PC-HELP..navíc proc mam stahovat RSIT kdyz tady se pouziva jen HJT.

PS : Ted delam kompletni sken NODem32.Zachytil 15 hrozeb,7 infikovaných souboru z toho jen 2 vylecil,ale rekl bych ze jeste pribudou dalsi.

PS 2 : Název počítače se sám od sebe změnil na HONZA a newím jak to změnit. Dále jsem včera nainstaloval IE8..už po 3 za tento týden.a dnes při spuštení IE8 se mi opet zobrazí chybová zpráva ,že v aplikaci iexplorer.exe došlo k chybě. Pak se už jen výrazně zpomalilo spouštení složek a souborů.

bledulka · Příspěvekod **bledulka** » 18 dub 2010 15:22

Mohl bys sem prosím tě dát log z Nodu, co našel?

Mám svolení od Jara3, že tu můžu pomáhat, klidně se ho zeptej. Ale můžeš si počkat na někoho jiného, když mi nevěříš.
Rsit jsem chtěla jen proto, že jen v něm toho vidět víc. Já Ti do počítače nevidím, musím se spoléhat pouze na logy a informace od Tebe.

martin.efres · Příspěvekod **martin.efres** » 18 dub 2010 15:34

Kontrola ještě probíhá ..a log nejde nejak zkopirovat ..tu je ss http://img42.imageshack.us/i/fafacq.jpg/

martin.efres · Příspěvekod **martin.efres** » 18 dub 2010 15:39

log :

Logfile of random's system information tool 1.06 (written by random/random)
Run by Butterfly at 2010-04-18 15:36:50
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 79 GB (79%) free of 100 GB
Total RAM: 1022 MB (43% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:37, on 2010-04-18
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\Common Files\BinarySense\hldasvc.exe
C:\Program Files\Common Files\BinarySense\hldasvc.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Documents and Settings\Butterfly\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Butterfly\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Butterfly\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Butterfly\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Butterfly\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Butterfly\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe
C:\Program Files\Steam\Steam.exe
C:\Documents and Settings\Butterfly\Plocha\RSIT.exe
C:\Program Files\trend micro\Butterfly.exe
C:\Documents and Settings\Butterfly\Local Settings\Data aplikací\Google\Chrome\Application\chrome.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: QIP 2005 - {1EF681F7-A04B-4D6D-9012-A307CCA55610} - C:\Program Files\QIP\qip.exe (HKCU)
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 6781085453
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HDDlife HDD Access service - BinarySense, Inc. - C:\Program Files\Common Files\BinarySense\hldasvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Unknown owner - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe

--
End of file - 7448 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\Automatic maintenance.job
C:\WINDOWS\tasks\Automatic troubleshooting.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-796845957-879983540-682003330-1003.job
C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-796845957-879983540-682003330-1003.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{1B255865-963C-43CA-8CB9-18642688F034}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2010-03-09 329312]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-02-20 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-02-20 79648]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2010-01-11 13666408]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2010-03-17 19520544]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2010-03-31 2145000]
"TkBellExe"=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2010-03-09 202256]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=
"HonorAutoRunSetting"=
"NoResolveSearch"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\Valve\hl.exe"="C:\Program Files\Valve\hl.exe:*:Enabled:Half-Life Launcher"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Steam\steamapps\cleverboy\counter-strike\hl.exe"="C:\Program Files\Steam\steamapps\cleverboy\counter-strike\hl.exe:*:Enabled:Half-Life Launcher"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2010-04-18 15:36:58 ----D---- C:\Program Files\trend micro
2010-04-18 15:36:50 ----D---- C:\rsit
2010-04-17 18:58:24 ----SHD---- C:\Config.Msi
2010-04-17 18:14:11 ----D---- C:\Program Files\TrendMicro
2010-04-17 18:00:40 ----D---- C:\Program Files\ESET
2010-04-17 17:44:29 ----A---- C:\WINDOWS\BricoPackFoldersDelete.cmd
2010-04-17 16:27:43 ----SHD---- C:\RECYCLER
2010-04-17 16:22:35 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-04-17 16:20:49 ----D---- C:\WINDOWS\temp
2010-04-17 16:06:28 ----D---- C:\WINDOWS\system32\CatRoot2
2010-04-17 09:57:59 ----D---- C:\WINDOWS\RegisteredPackages
2010-04-17 09:57:18 ----A---- C:\WINDOWS\system32\psisdecd.dll
2010-04-17 09:57:10 ----A---- C:\WINDOWS\system32\dxdllreg.exe
2010-04-16 20:10:01 ----A---- C:\resetlog.txt
2010-04-16 20:00:15 ----A---- C:\WINDOWS\system32\resetlog.txt
2010-04-15 14:31:13 ----D---- C:\ERDNT
2010-04-14 21:11:03 ----D---- C:\WINDOWS\Prefetch
2010-04-14 20:19:11 ----A---- C:\WINDOWS\000002_.tmp
2010-04-14 15:03:35 ----A---- C:\WINDOWS\system32\hidserv.dll
2010-04-13 19:54:04 ----A---- C:\WINDOWS\000001_.tmp
2010-04-13 18:16:11 ----A---- C:\WINDOWS\ModemLog_Standardní modem 300 bitů za sekundu.txt
2010-04-12 20:53:13 ----D---- C:\Program Files\Valve
2010-04-12 19:46:52 ----A---- C:\WINDOWS\UPGRADE.TXT
2010-04-11 21:53:38 ----D---- C:\Program Files\ViGlance
2010-04-11 21:23:16 ----N---- C:\WINDOWS\system32\msxml6r.dll
2010-04-11 21:23:16 ----N---- C:\WINDOWS\system32\msxml6.dll
2010-04-11 21:23:16 ----D---- C:\Program Files\Messenger
2010-04-11 21:23:15 ----N---- C:\WINDOWS\system32\comsdupd.exe
2010-04-11 21:23:14 ----N---- C:\WINDOWS\system32\smtpapi.dll
2010-04-11 21:23:14 ----N---- C:\WINDOWS\system32\rwnh.dll
2010-04-11 21:23:12 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2010-04-11 21:23:12 ----N---- C:\WINDOWS\system32\azroles.dll
2010-04-11 21:23:12 ----N---- C:\WINDOWS\system32\ativvaxx.dll
2010-04-11 21:23:12 ----N---- C:\WINDOWS\system32\ativtmxx.dll
2010-04-11 21:23:12 ----N---- C:\WINDOWS\system32\ati3duag.dll
2010-04-11 21:23:12 ----N---- C:\WINDOWS\system32\ati3d1ag.dll
2010-04-11 21:23:12 ----N---- C:\WINDOWS\system32\ati2dvag.dll
2010-04-11 21:23:12 ----N---- C:\WINDOWS\system32\ati2dvaa.dll
2010-04-11 21:23:12 ----N---- C:\WINDOWS\system32\ati2cqag.dll
2010-04-11 21:23:12 ----N---- C:\WINDOWS\system32\aaclient.dll
2010-04-11 21:23:11 ----N---- C:\WINDOWS\system32\hsfcisp2.dll
2010-04-11 21:23:11 ----N---- C:\WINDOWS\system32\eapsvc.dll
2010-04-11 21:23:11 ----N---- C:\WINDOWS\system32\eapqec.dll
2010-04-11 21:23:11 ----N---- C:\WINDOWS\system32\eappprxy.dll
2010-04-11 21:23:11 ----N---- C:\WINDOWS\system32\eapphost.dll
2010-04-11 21:23:11 ----N---- C:\WINDOWS\system32\eappgnui.dll
2010-04-11 21:23:11 ----N---- C:\WINDOWS\system32\eappcfg.dll
2010-04-11 21:23:11 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2010-04-11 21:23:11 ----N---- C:\WINDOWS\system32\eapolqec.dll
2010-04-11 21:23:11 ----N---- C:\WINDOWS\system32\dot3ui.dll
2010-04-11 21:23:11 ----N---- C:\WINDOWS\system32\dot3svc.dll
2010-04-11 21:23:11 ----N---- C:\WINDOWS\system32\dot3msm.dll
2010-04-11 21:23:11 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2010-04-11 21:23:11 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2010-04-11 21:23:11 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2010-04-11 21:23:11 ----N---- C:\WINDOWS\system32\dot3api.dll
2010-04-11 21:23:11 ----N---- C:\WINDOWS\system32\dimsroam.dll
2010-04-11 21:23:11 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2010-04-11 21:23:11 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2010-04-11 21:23:11 ----N---- C:\WINDOWS\system32\credssp.dll
2010-04-11 21:23:10 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2010-04-11 21:23:10 ----N---- C:\WINDOWS\system32\kmsvc.dll
2010-04-11 21:23:10 ----N---- C:\WINDOWS\system32\kbdpash.dll
2010-04-11 21:23:10 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2010-04-11 21:23:10 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2010-04-11 21:23:10 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2010-04-11 21:23:09 ----N---- C:\WINDOWS\system32\onex.dll
2010-04-11 21:23:09 ----N---- C:\WINDOWS\system32\napstat.exe
2010-04-11 21:23:09 ----N---- C:\WINDOWS\system32\napmontr.dll
2010-04-11 21:23:09 ----N---- C:\WINDOWS\system32\napipsec.dll
2010-04-11 21:23:09 ----N---- C:\WINDOWS\system32\mtxparhd.dll
2010-04-11 21:23:09 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2010-04-11 21:23:09 ----N---- C:\WINDOWS\system32\mssha.dll
2010-04-11 21:23:09 ----N---- C:\WINDOWS\system32\mmcperf.exe
2010-04-11 21:23:09 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2010-04-11 21:23:09 ----N---- C:\WINDOWS\system32\mmcex.dll
2010-04-11 21:23:09 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2010-04-11 21:23:09 ----N---- C:\WINDOWS\system32\mdmxsdk.dll
2010-04-11 21:23:08 ----N---- C:\WINDOWS\system32\slserv.exe
2010-04-11 21:23:08 ----N---- C:\WINDOWS\system32\slrundll.exe
2010-04-11 21:23:08 ----N---- C:\WINDOWS\system32\slgen.dll
2010-04-11 21:23:08 ----N---- C:\WINDOWS\system32\slextspk.dll
2010-04-11 21:23:08 ----N---- C:\WINDOWS\system32\slcoinst.dll
2010-04-11 21:23:08 ----N---- C:\WINDOWS\system32\setupn.exe
2010-04-11 21:23:08 ----N---- C:\WINDOWS\system32\s3gnb.dll
2010-04-11 21:23:08 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2010-04-11 21:23:08 ----N---- C:\WINDOWS\system32\rasqec.dll
2010-04-11 21:23:08 ----N---- C:\WINDOWS\system32\qutil.dll
2010-04-11 21:23:08 ----N---- C:\WINDOWS\system32\qcliprov.dll
2010-04-11 21:23:08 ----N---- C:\WINDOWS\system32\qagentrt.dll
2010-04-11 21:23:08 ----N---- C:\WINDOWS\system32\qagent.dll
2010-04-11 21:23:08 ----N---- C:\WINDOWS\system32\photometadatahandler.dll
2010-04-11 21:23:07 ----N---- C:\WINDOWS\system32\wmphoto.dll
2010-04-11 21:23:07 ----N---- C:\WINDOWS\system32\wlanapi.dll
2010-04-11 21:23:07 ----N---- C:\WINDOWS\system32\windowscodecsext.dll
2010-04-11 21:23:07 ----N---- C:\WINDOWS\system32\windowscodecs.dll
2010-04-11 21:23:07 ----N---- C:\WINDOWS\system32\verclsid.exe
2010-04-11 21:23:07 ----N---- C:\WINDOWS\system32\tzchange.exe
2010-04-11 21:23:07 ----N---- C:\WINDOWS\system32\tspkg.dll
2010-04-11 21:23:07 ----N---- C:\WINDOWS\system32\tsgqec.dll
2010-04-11 21:23:06 ----N---- C:\WINDOWS\slrundll.exe
2010-04-11 21:17:20 ----A---- C:\WINDOWS\002627_.tmp
2010-04-11 21:14:21 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2010-04-09 18:40:57 ----D---- C:\Program Files\WhoCrashed
2010-04-06 20:45:52 ----D---- C:\Program Files\inKline Global
2010-04-05 21:11:45 ----D---- C:\Program Files\ICQ6.5
2010-04-04 14:50:11 ----A---- C:\WINDOWS\wininit.ini
2010-04-04 14:37:53 ----D---- C:\WINDOWS\Internet Logs
2010-04-03 20:08:39 ----D---- C:\Program Files\DAEMON Tools Lite
2010-04-03 10:58:59 ----D---- C:\Program Files\Common Files\Adobe AIR
2010-04-02 21:30:32 ----D---- C:\Documents and Settings\All Users\Data aplikací\Electronic Arts
2010-04-02 21:27:58 ----D---- C:\ProgramData
2010-04-02 21:09:56 ----D---- C:\Program Files\Elaborate Bytes
2010-04-01 20:54:55 ----RSH---- C:\WINDOWS\system32\nbDX.dll
2010-04-01 20:54:55 ----RSH---- C:\WINDOWS\system32\msfDX.dll
2010-04-01 20:54:55 ----RSH---- C:\WINDOWS\system32\flvDX.dll
2010-04-01 20:54:43 ----D---- C:\Program Files\eRightSoft
2010-04-01 18:37:58 ----D---- C:\Documents and Settings\Butterfly\Data aplikací\Miranda
2010-03-31 21:38:02 ----N---- C:\WINDOWS\system32\spmsg.dll
2010-03-31 21:36:42 ----HDC---- C:\WINDOWS\ie8
2010-03-31 19:30:50 ----D---- C:\Program Files\QuickTime
2010-03-29 21:28:50 ----D---- C:\Program Files\DriveSitter
2010-03-29 20:56:43 ----D---- C:\WINDOWS\system32\RTCOM
2010-03-29 20:56:23 ----A---- C:\WINDOWS\vncutil.exe
2010-03-29 20:56:23 ----A---- C:\WINDOWS\SOUNDMAN.EXE
2010-03-29 20:56:23 ----A---- C:\WINDOWS\SkyTel.exe
2010-03-29 20:56:22 ----A---- C:\WINDOWS\RtlUpd.exe
2010-03-29 20:56:20 ----A---- C:\WINDOWS\RTLCPL.EXE
2010-03-29 20:56:19 ----A---- C:\WINDOWS\RtkAudioService.exe
2010-03-29 20:56:18 ----A---- C:\WINDOWS\RTHDCPL.EXE
2010-03-29 20:56:17 ----A---- C:\WINDOWS\MicCal.exe
2010-03-29 20:56:14 ----A---- C:\WINDOWS\ALCWZRD.EXE
2010-03-29 19:48:19 ----A---- C:\WINDOWS\system32\xmllite.dll
2010-03-29 15:57:00 ----D---- C:\WINDOWS\ServicePackFiles
2010-03-29 08:15:20 ----A---- C:\WINDOWS\system32\frapsvid.dll
2010-03-29 06:59:49 ----D---- C:\WINDOWS\ie7updates
2010-03-29 06:58:05 ----HDC---- C:\WINDOWS\ie7
2010-03-29 06:57:50 ----HDC---- C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$
2010-03-29 06:57:33 ----HDC---- C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$
2010-03-28 21:47:00 ----A---- C:\WINDOWS\system32\Nucleus.dll
2010-03-28 15:19:59 ----D---- C:\Documents and Settings\Butterfly\Data aplikací\BITS
2010-03-28 15:18:22 ----D---- C:\profiles
2010-03-28 15:00:46 ----D---- C:\Program Files\Realtek
2010-03-28 14:49:00 ----D---- C:\Program Files\Typle2.0v
2010-03-28 14:44:01 ----D---- C:\Program Files\Spybot - Search & Destroy
2010-03-28 14:44:01 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2010-03-27 22:29:03 ----D---- C:\Documents and Settings\Butterfly\Data aplikací\Trillian
2010-03-27 22:28:42 ----D---- C:\Program Files\Trillian
2010-03-27 15:52:56 ----A---- C:\WINDOWS\system32\vIdeInst.dll
2010-03-27 15:01:02 ----D---- C:\Documents and Settings\Butterfly\Data aplikací\ESET
2010-03-27 14:59:26 ----D---- C:\Documents and Settings\All Users\Data aplikací\ESET
2010-03-27 13:13:33 ----A---- C:\WINDOWS\system32\ISkeyObject.dll
2010-03-27 13:13:31 ----D---- C:\Program Files\Octatec
2010-03-26 23:05:06 ----A---- C:\WINDOWS\system32\DIFxAPI.dll
2010-03-26 22:56:54 ----D---- C:\Documents and Settings\All Users\Data aplikací\IObit
2010-03-24 14:09:45 ----D---- C:\Program Files\Unlocker
2010-03-21 17:14:28 ----D---- C:\4ff30b108ae611c0b1312ac9e82f8d16
2010-03-21 13:49:02 ----N---- C:\WINDOWS\system32\qmgr.dll
2010-03-21 13:47:56 ----N---- C:\WINDOWS\system32\msgsvc.dll
2010-03-21 13:47:56 ----N---- C:\WINDOWS\system32\kernel32.dll
2010-03-21 13:47:56 ----N---- C:\WINDOWS\system32\comctl32.dll
2010-03-21 13:47:56 ----A---- C:\WINDOWS\system32\perfctrs.dll
2010-03-21 13:47:56 ----A---- C:\WINDOWS\system32\olecnv32.dll
2010-03-21 13:47:56 ----A---- C:\WINDOWS\system32\oleaut32.dll
2010-03-21 13:47:56 ----A---- C:\WINDOWS\system32\nwprovau.dll
2010-03-21 13:47:56 ----A---- C:\WINDOWS\system32\ntvdm.exe
2010-03-21 13:47:56 ----A---- C:\WINDOWS\system32\ntprint.dll
2010-03-21 13:47:56 ----A---- C:\WINDOWS\system32\ntlsapi.dll
2010-03-21 13:47:56 ----A---- C:\WINDOWS\system32\ntdll.dll
2010-03-21 13:47:56 ----A---- C:\WINDOWS\system32\nslookup.exe
2010-03-21 13:47:56 ----A---- C:\WINDOWS\system32\msv1_0.dll
2010-03-21 13:47:56 ----A---- C:\WINDOWS\system32\mgmtapi.dll
2010-03-21 13:47:56 ----A---- C:\WINDOWS\system32\lsasrv.dll
2010-03-21 13:47:56 ----A---- C:\WINDOWS\system32\locator.exe
2010-03-21 13:47:56 ----A---- C:\WINDOWS\system32\localspl.dll
2010-03-21 13:47:56 ----A---- C:\WINDOWS\system32\lmhsvc.dll
2010-03-21 13:47:56 ----A---- C:\WINDOWS\system32\imagehlp.dll
2010-03-21 13:47:56 ----A---- C:\WINDOWS\system32\ftp.exe
2010-03-21 13:47:56 ----A---- C:\WINDOWS\system32\format.com
2010-03-21 13:47:56 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll
2010-03-21 13:47:56 ----A---- C:\WINDOWS\system32\csrsrv.dll
2010-03-21 13:47:56 ----A---- C:\WINDOWS\system32\comdlg32.dll
2010-03-21 13:47:56 ----A---- C:\WINDOWS\system32\cmd.exe
2010-03-21 13:47:56 ----A---- C:\WINDOWS\system32\cacls.exe
2010-03-21 13:47:56 ----A---- C:\WINDOWS\system32\autochk.exe
2010-03-21 13:47:56 ----A---- C:\WINDOWS\system32\autoconv.exe
2010-03-21 13:47:56 ----A---- C:\WINDOWS\system32\advapi32.dll
2010-03-21 13:47:55 ----A---- C:\WINDOWS\system32\printui.dll
2010-03-21 13:47:54 ----N---- C:\WINDOWS\system32\services.exe
2010-03-21 13:47:54 ----A---- C:\WINDOWS\system32\tcpmonui.dll
2010-03-21 13:47:54 ----A---- C:\WINDOWS\system32\syssetup.dll
2010-03-21 13:47:54 ----A---- C:\WINDOWS\system32\srvsvc.dll
2010-03-21 13:47:54 ----A---- C:\WINDOWS\system32\smss.exe
2010-03-21 13:47:54 ----A---- C:\WINDOWS\system32\schannel.dll
2010-03-21 13:47:54 ----A---- C:\WINDOWS\system32\setupapi.dll
2010-03-21 13:47:54 ----A---- C:\WINDOWS\system32\sessmgr.exe
2010-03-21 13:47:54 ----A---- C:\WINDOWS\system32\scardsvr.exe
2010-03-21 13:47:54 ----A---- C:\WINDOWS\system32\savedump.exe
2010-03-21 13:47:54 ----A---- C:\WINDOWS\system32\samsrv.dll
2010-03-21 13:47:54 ----A---- C:\WINDOWS\system32\samlib.dll
2010-03-21 13:47:54 ----A---- C:\WINDOWS\system32\rshx32.dll
2010-03-21 13:47:54 ----A---- C:\WINDOWS\system32\rastapi.dll
2010-03-21 13:47:54 ----A---- C:\WINDOWS\system32\rasman.dll
2010-03-21 13:47:54 ----A---- C:\WINDOWS\system32\rasdlg.dll
2010-03-21 13:47:54 ----A---- C:\WINDOWS\system32\rasauto.dll
2010-03-21 13:47:54 ----A---- C:\WINDOWS\system32\rasapi32.dll
2010-03-21 13:47:53 ----N---- C:\WINDOWS\system32\userinit.exe
2010-03-21 13:47:53 ----A---- C:\WINDOWS\system32\wkssvc.dll
2010-03-21 13:47:53 ----A---- C:\WINDOWS\system32\win32spl.dll
2010-03-21 13:47:53 ----A---- C:\WINDOWS\system32\untfs.dll
2010-03-21 13:47:53 ----A---- C:\WINDOWS\system32\ulib.dll
2010-03-21 13:47:51 ----N---- C:\WINDOWS\system32\ntoskrnl.exe
2010-03-21 13:47:51 ----N---- C:\WINDOWS\system32\_000005_.tmp.dll
2010-03-21 13:47:51 ----A---- C:\WINDOWS\system32\HAL.DLL
2010-03-21 13:47:50 ----N---- C:\WINDOWS\system32\ntkrnlpa.exe
2010-03-20 15:05:48 ----A---- C:\WINDOWS\IsUn0405.exe
2010-03-20 13:58:22 ----D---- C:\Program Files\IObit
2010-03-20 13:58:22 ----D---- C:\Documents and Settings\Butterfly\Data aplikací\IObit
2010-03-20 12:18:44 ----D---- C:\8d1dcefa3cfdd9e55f07418277cc
2010-03-19 23:18:10 ----A---- C:\WINDOWS\system32\vusetup.dll
2010-03-19 21:38:23 ----A---- C:\WINDOWS\system32\devcon_x64.exe
2010-03-19 18:36:05 ----A---- C:\WINDOWS\system32\msvcrtnew.dll
2010-03-19 18:36:05 ----A---- C:\WINDOWS\system32\dxgi.dll
2010-03-19 18:35:25 ----A---- C:\WINDOWS\system32\msvcr80.dll
2010-03-19 18:35:25 ----A---- C:\WINDOWS\system32\d3d10.dll
2010-03-19 18:35:23 ----A---- C:\WINDOWS\system32\msvcp80.dll
2010-03-19 18:35:19 ----A---- C:\Program Files\Common Files\unins000.exe

======List of files/folders modified in the last 1 months======

2010-04-18 15:36:58 ----D---- C:\Program Files
2010-04-18 15:34:01 ----SD---- C:\WINDOWS\Tasks
2010-04-18 15:15:54 ----D---- C:\Program Files\Steam
2010-04-18 14:08:42 ----AD---- C:\WINDOWS
2010-04-18 14:08:40 ----D---- C:\WINDOWS\Debug
2010-04-18 12:35:47 ----D---- C:\WINDOWS\system32
2010-04-18 12:35:47 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-04-18 09:22:37 ----AD---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2010-04-17 19:23:22 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-04-17 19:23:22 ----D---- C:\Program Files\Internet Explorer
2010-04-17 19:17:59 ----HD---- C:\WINDOWS\inf
2010-04-17 19:13:29 ----HD---- C:\WINDOWS\$hf_mig$
2010-04-17 19:13:21 ----D---- C:\WINDOWS\system32\drivers
2010-04-17 19:13:20 ----D---- C:\WINDOWS\system32\CatRoot
2010-04-17 19:07:15 ----D---- C:\WINDOWS\AppPatch
2010-04-17 19:07:14 ----D---- C:\WINDOWS\system32\wbem
2010-04-17 19:07:14 ----D---- C:\WINDOWS\Help
2010-04-17 19:02:13 ----D---- C:\Program Files\Common Files
2010-04-17 18:58:45 ----SHD---- C:\WINDOWS\Installer
2010-04-17 18:58:25 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2010-04-17 18:53:31 ----D---- C:\WINDOWS\system32\cs-cz
2010-04-17 18:48:38 ----D---- C:\Program Files\AIMP2
2010-04-17 18:44:42 ----D---- C:\Documents and Settings\Butterfly\Data aplikací\AIMP
2010-04-17 18:42:56 ----D---- C:\Program Files\Outlook Express
2010-04-17 18:24:42 ----RSD---- C:\WINDOWS\Fonts
2010-04-17 18:24:42 ----D---- C:\WINDOWS\Media
2010-04-17 18:24:42 ----D---- C:\WINDOWS\Cursors
2010-04-17 18:24:42 ----D---- C:\Program Files\Movie Maker
2010-04-17 18:24:41 ----D---- C:\WINDOWS\system32\usmt
2010-04-17 18:14:14 ----SD---- C:\Documents and Settings\Butterfly\Data aplikací\Microsoft
2010-04-17 17:46:36 ----A---- C:\WINDOWS\system32\uxtheme.dll
2010-04-17 17:46:36 ----A---- C:\WINDOWS\BricoPackUninst.txt
2010-04-17 17:46:36 ----A---- C:\WINDOWS\BricoPackUninst.cmd
2010-04-17 17:44:09 ----D---- C:\WINDOWS\BricoPacks
2010-04-17 16:32:37 ----SHD---- C:\System Volume Information
2010-04-17 16:32:37 ----D---- C:\WINDOWS\system32\Restore
2010-04-17 16:22:56 ----A---- C:\WINDOWS\system.ini
2010-04-17 16:21:10 ----D---- C:\WINDOWS\system32\config
2010-04-17 16:02:30 ----A---- C:\WINDOWS\win.ini
2010-04-17 10:22:39 ----D---- C:\WINDOWS\Registration
2010-04-17 09:56:40 ----D---- C:\WINDOWS\system32\DirectX
2010-04-16 19:17:08 ----D---- C:\WINDOWS\system32\LogFiles
2010-04-16 17:58:05 ----D---- C:\Program Files\TuneUp Utilities 2010
2010-04-16 16:36:56 ----D---- C:\Program Files\Speeditup Free
2010-04-16 16:19:25 ----D---- C:\Program Files\Alwil Software
2010-04-16 14:06:35 ----D---- C:\WINDOWS\network diagnostic
2010-04-15 21:22:16 ----D---- C:\WINDOWS\security
2010-04-14 20:19:55 ----D---- C:\WINDOWS\system32\oobe
2010-04-14 20:19:10 ----D---- C:\WINDOWS\system32\ReinstallBackups
2010-04-14 20:18:54 ----D---- C:\WINDOWS\ehome
2010-04-12 19:35:37 ----D---- C:\Program Files\Motherboard Monitor 5
2010-04-12 19:33:29 ----HD---- C:\Program Files\InstallShield Installation Information
2010-04-12 19:32:14 ----D---- C:\Program Files\SpeedFan
2010-04-12 19:32:03 ----D---- C:\WINDOWS\Minidump
2010-04-11 21:34:36 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2010-04-11 21:33:15 ----D---- C:\WINDOWS\system32\Setup
2010-04-11 21:23:20 ----D---- C:\WINDOWS\WinSxS
2010-04-11 21:23:14 ----D---- C:\WINDOWS\system32\inetsrv
2010-04-11 21:23:14 ----D---- C:\WINDOWS\ime
2010-04-11 21:23:05 ----D---- C:\WINDOWS\system32\cs
2010-04-11 21:23:05 ----D---- C:\WINDOWS\system32\bits
2010-04-11 21:23:05 ----D---- C:\WINDOWS\PeerNet
2010-04-11 21:23:05 ----D---- C:\WINDOWS\l2schemas
2010-04-11 21:20:50 ----D---- C:\WINDOWS\system32\npp
2010-04-11 21:20:49 ----D---- C:\WINDOWS\msagent
2010-04-11 21:20:48 ----D---- C:\WINDOWS\srchasst
2010-04-11 21:20:47 ----D---- C:\Program Files\NetMeeting
2010-04-11 21:20:46 ----D---- C:\WINDOWS\system32\Com
2010-04-11 21:20:45 ----D---- C:\Program Files\Windows Media Player
2010-04-11 21:20:44 ----D---- C:\Program Files\Windows NT
2010-04-11 21:20:42 ----D---- C:\Program Files\Common Files\System
2010-04-11 21:20:23 ----D---- C:\WINDOWS\system
2010-04-09 18:40:56 ----D---- C:\Program Files\Debugging Tools for Windows (x86)
2010-04-09 14:56:20 ----D---- C:\Program Files\Google
2010-04-07 21:50:54 ----D---- C:\Documents and Settings\Butterfly\Data aplikací\Skype
2010-04-07 21:29:38 ----D---- C:\Documents and Settings\Butterfly\Data aplikací\skypePM
2010-04-06 17:22:49 ----D---- C:\Documents and Settings\Butterfly\Data aplikací\Macromedia
2010-04-06 10:52:56 ----A---- C:\WINDOWS\system32\MRT.exe
2010-04-05 10:29:33 ----D---- C:\Program Files\Codec Pack - All In 1
2010-04-03 19:24:40 ----D---- C:\Program Files\Glary Utilities
2010-04-03 10:59:22 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2010-04-03 10:59:21 ----D---- C:\Documents and Settings\Butterfly\Data aplikací\Adobe
2010-04-03 10:53:03 ----D---- C:\Program Files\CCleaner
2010-04-02 22:00:15 ----D---- C:\WINDOWS\Logs
2010-04-02 20:49:52 ----ASH---- C:\boot.ini
2010-04-02 12:08:40 ----D---- C:\Program Files\PKR
2010-04-01 22:45:58 ----HDC---- C:\WINDOWS\$NtUninstallMSCompPackV1$
2010-04-01 22:45:56 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$
2010-03-31 21:40:20 ----D---- C:\WINDOWS\ie8updates
2010-03-31 21:13:50 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-03-30 19:20:36 ----D---- C:\WINDOWS\system32\NtmsData
2010-03-30 19:16:57 ----D---- C:\Program Files\Tseries BIOS Update
2010-03-28 08:25:47 ----D---- C:\WINDOWS\system32\MsDtc
2010-03-28 08:25:47 ----D---- C:\Documents and Settings\Butterfly\Data aplikací\Ventrilo
2010-03-28 08:25:47 ----D---- C:\Documents and Settings\All Users\Data aplikací\Kaspersky Lab
2010-03-28 08:25:46 ----D---- C:\WINDOWS\repair
2010-03-28 08:25:46 ----D---- C:\Program Files\GameSpy Arcade
2010-03-28 08:25:40 ----SHD---- C:\WINDOWS\CSC
2010-03-27 22:28:48 ----D---- C:\Documents and Settings\Butterfly\Data aplikací\Real
2010-03-24 18:25:16 ----D---- C:\Documents and Settings\All Users\Data aplikací\Real
2010-03-24 14:20:47 ----D---- C:\Program Files\Mozilla Firefox
2010-03-24 14:20:46 ----D---- C:\Inetpub
2010-03-24 14:20:46 ----D---- C:\Documents and Settings\All Users\Data aplikací\CyberLink
2010-03-24 14:19:26 ----D---- C:\Program Files\Prime95
2010-03-24 14:19:26 ----D---- C:\Program Files\K-Lite Codec Pack
2010-03-24 14:19:21 ----D---- C:\Documents and Settings\Butterfly\Data aplikací\FreshDiagnose
2010-03-24 14:19:20 ----D---- C:\Program Files\All Ten Fingers
2010-03-22 23:27:39 ----D---- C:\Program Files\Opera
2010-03-21 16:16:00 ----D---- C:\Program Files\Adobe
2010-03-21 15:24:50 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-03-20 15:29:43 ----HD---- C:\WINDOWS\system32\GroupPolicy

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 BIOS;BIOS; \??\C:\WINDOWS\system32\drivers\BIOS.sys []
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2010-03-31 114984]
R1 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2009-02-17 24232]
R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2010-03-31 95872]
R1 HWiNFO32;HWiNFO32 Kernel Driver; \??\C:\Program Files\HWiNFO32\HWiNFO32.SYS []
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2006-07-24 5632]
R1 Tcpip6;Ovladač protokolu Microsoft IPv6; C:\WINDOWS\system32\DRIVERS\tcpip6.sys [2010-02-11 226880]
R1 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-25 12032]
R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2010-03-31 140216]
R2 NwlnkIpx;Transportní protokol kompatibilní s NWLink IPX/SPX/NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2008-04-14 88320]
R2 NwlnkNb;Služba NWLink pro rozhraní NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2001-10-25 63232]
R2 NwlnkSpx;Protokol NWLink SPX/SPXII; C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2001-10-25 55936]
R3 ElbyCDFL;ElbyCDFL; C:\WINDOWS\System32\Drivers\ElbyCDFL.sys [2007-02-16 34760]
R3 FET5X86V;VIA Rhine-Family Fast-Ethernet Adapter Driver Service; C:\WINDOWS\system32\DRIVERS\fetnd5bv.sys [2009-06-16 46592]
R3 gHidPnp;USB Device Enhanced Function Driver; C:\WINDOWS\System32\Drivers\gHidPnp.Sys [2009-03-06 18944]
R3 gMouUsb;USB Mouse Device Drv; C:\WINDOWS\system32\DRIVERS\gMouUsb.sys [2009-03-04 11520]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2010-03-17 5878304]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2010-01-12 10276768]
R3 Ps2;PS2; C:\WINDOWS\system32\DRIVERS\PS2.sys [2010-03-19 19072]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2001-10-25 5888]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2008-04-13 20992]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys []
R3 tunmp;Microsoft Tun Miniport Adapter Driver; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2008-04-14 12288]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-14 30208]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 vulfnths;VIA USB Host Controller Lower Filter; C:\WINDOWS\System32\Drivers\vulfnth.sys [2005-01-05 6912]
R3 vulfntrs;VIA USB Roothub Lower Filter; C:\WINDOWS\System32\Drivers\vulfntr.sys [2005-06-06 11264]
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2009-11-18 1691480]
S3 dtscsi;dtscsi; C:\WINDOWS\System32\Drivers\dtscsi.sys [2010-04-03 223128]
S3 ENTECH;ENTECH; \??\C:\WINDOWS\system32\DRIVERS\ENTECH.sys []
S3 FETNDIS;VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\fetnd5.sys [2001-08-17 27165]
S3 FETNDISB;VIA Rhine Family Fast Ethernet Adapter Driver Service; C:\WINDOWS\system32\DRIVERS\fetnd5b.sys [2004-01-09 42496]
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2009-11-18 1395800]
S3 msloop;Microsoft Loopback Adapter Driver; C:\WINDOWS\system32\DRIVERS\loop.sys [2001-08-17 4992]
S3 nm;Ovladač programu Sledování sítě; C:\WINDOWS\system32\DRIVERS\NMnt.sys [2008-04-14 40320]
S3 NTSIM;NTSIM; \??\C:\WINDOWS\system32\ntsim.sys []
S3 RTL8023xp;Realtek 10/100/1000 PCI NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys [2008-02-25 105088]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:\WINDOWS\system32\DRIVERS\sscdbus.sys [2008-02-22 87936]
S3 sscdmdfl;SAMSUNG Mobile Modem Filter; C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys [2008-02-22 14976]
S3 sscdmdm;SAMSUNG Mobile Modem Drivers; C:\WINDOWS\system32\DRIVERS\sscdmdm.sys [2008-02-22 114304]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 VClone;VClone; C:\WINDOWS\system32\DRIVERS\VClone.sys [2009-05-23 29696]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
S4 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-03-07 691696]
S4 sr;Ovladač filtru Obnovy systému; C:\WINDOWS\system32\DRIVERS\sr.sys [2008-04-14 73344]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2010-03-31 810120]
R2 HDDlife HDD Access service;HDDlife HDD Access service; C:\Program Files\Common Files\BinarySense\hldasvc.exe [2009-08-19 822936]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-02-20 153376]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2010-01-11 154216]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [2009-10-30 1021256]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 6to4;Pomocná služba protokolu IPv6; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 gupdate;Google Update Service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-03-21 136176]
S2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe []
S2 UxTuneUp;TuneUp Theme Extension; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2010-03-31 33560]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe [2010-02-27 435016]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]

-----------------EOF-----------------

//Bledulka má můj souhlas , aby mohla radit . jaro3

bledulka · Příspěvekod **bledulka** » 18 dub 2010 15:48

Alcohol máš legálně, nebo s keyegenem?
Zkus celý ten rar otestovat na virustotalu, ale nevím, jestli není moc velký.

Udělej pak ještě sken mbamem, jak jsme psala výš.

martin.efres · Příspěvekod **martin.efres** » 18 dub 2010 16:14

Alcohol je legální ..trial verze toe ,..ale newim odkud jsem to stahoval ze je to v raru. Ten Alcohol v raru jsem asi nechal smazat ..tak ho v ty slozce nemam. A ten soubor Screenshots.exe je v karanténě u NODu.

bledulka · Příspěvekod **bledulka** » 18 dub 2010 16:46

Fajn, udělej ještě ten mbam.

martin.efres · Příspěvekod **martin.efres** » 18 dub 2010 18:34

jj už skenuju, jinak ty logy jsou v pořádku? vždy když jsem dával logy ..tak se tam něco našlo. Mimochodem..proč mám kontrolovat pc zrovna přes mbam, vždyť v nejnovější aktualizaci je tam okolo 220 000 vzorků? ..když jsem používal ještě avast 5 tak ten měl přes 2,2 mil vzorků..a NOD32 by jich měl mít víc než oba dva dohromady..Už skenuju 15 min a jsem u 3. složky..viděl bych to na 2-3 hodin..newím jestli tak dlouho tu budu..

PS: Co když MBAM nemá ve virové databázi Win32/Agent a škodlivé malwary ,které vytváří? Před týdnem jsem použival ještě avast 5 ..a ten mi žádný malware ani hrozbu nenašel ,ikdyž Win32/Agent je hrozba na http://www.eset.cz ..déle než 3 měsíce tuším.

bledulka · Příspěvekod **bledulka** » 18 dub 2010 19:22

Prosím tě needituj příspěvky, na které jsem už odpověděla, nevidím pak, žes tam něco dopisoval :roll:

.

V logu vyloženě nic špatného nevidím, pak jen pročistíme tempy.
Já bych spíš viděla problém v tom, co stahuješ za programy a z jakých zdrojů.
MBAM je výborný detektor na malware, ale není to antivir, nemůžeš ty dva programy spolu srovnávat.

Prosím o kontrolu - NOD32 nalezl Win32/Agent trojský kůň Vyřešeno

Prosím o kontrolu - NOD32 nalezl Win32/Agent trojský kůň Vyřešeno

Re: Prosím o kontrolu - NOD32 nalezl Win32/Agent trojský kůň

Re: Prosím o kontrolu - NOD32 nalezl Win32/Agent trojský kůň

Re: Prosím o kontrolu - NOD32 nalezl Win32/Agent trojský kůň

Re: Prosím o kontrolu - NOD32 nalezl Win32/Agent trojský kůň

Re: Prosím o kontrolu - NOD32 nalezl Win32/Agent trojský kůň

Re: Prosím o kontrolu - NOD32 nalezl Win32/Agent trojský kůň

Re: Prosím o kontrolu - NOD32 nalezl Win32/Agent trojský kůň

Re: Prosím o kontrolu - NOD32 nalezl Win32/Agent trojský kůň

Re: Prosím o kontrolu - NOD32 nalezl Win32/Agent trojský kůň

Re: Prosím o kontrolu - NOD32 nalezl Win32/Agent trojský kůň

Kdo je online