HJT-prosim o kontrolu Logu Vyřešeno

[legendaryboy]

uz scanuji pod FF a jede to normalne...ale pokud rikate ze je to pod FF k nicemu tak pojedu pod Operou? Staci rict...
Jo a ted tam ctu ze by se nemelo scanovat soucasne se zapatym antivirem presne receno:
Attention: Kaspersky Online Scanner 7.0 may not run successfully while any other antivirus program is running. If you have another antivirus program installed, please turn it off before running Kaspersky Online Scanner 7.0.

Mam vypnout rezidentni stit AVASTU nebo ho zase odinstalovat?

[Reklama]

[jaro3]

Stačí vypnout rez. ochranu, když to už jede v FF , tak to nech , snad to bude v pořádku, datbáze se snad nainstalovala, ale jak dlouho to bude trvat , to ti neřeknu..

[legendaryboy]

po cca 4 hod scanu vypadl na sekundu el. proud!!! Me snad omejou! mesic nevypadle a zrovna ted musi! zkusim pokracovat tam kde to skoncilo, protoze to nic moc nenaslo...asi 2 chyby

[legendaryboy]

bohuzel vypadl proud v dome, scan se po 4 hod prerusil. Co sem tak prubezne sledoval naslo to na C: asi 2 infekce. Bohuzel si nepamatuji cesty k nim, takze budu muset projet C: znova.
Proto sem po vypadku rucne projel ten posledni adresar na disku pri kterem to vypadlo, takze je mozny ze sem neco z C: opomnel, pokud scan probiha tak jak sel po jednotlivych adresarech abecedne tak po tom adresari nic dalsiho na C: nejni ale nechci to nijak podcenit...
Zkratka netestuji metodou MyComp, ale po discich jednotlive, doufam ze to moc neva?

zde je log z disku F:, mam ty infekce dohledat a rucne smazat?
--------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER 7 REPORT
Saturday, February 28, 2009
Operating System: Microsoft Windows XP Professional Service Pack 3 (build 2600)
Kaspersky Online Scanner 7 version: 7.0.25.0
Program database last update: Saturday, February 28, 2009 12:59:10
Records in database: 1855330
--------------------------------------------------------------------------------

Scan settings:
Scan using the following database: extended
Scan archives: yes
Scan mail databases: yes

Scan area - Folder:
F:\

Scan statistics:
Files scanned: 22934
Threat name: 3
Infected objects: 8
Suspicious objects: 0
Duration of the scan: 01:28:05


File name / Threat name / Threats count
F:\Programy\Iphone software\The best iPhone ringtones and wallpapers\Iphone_rng_best.exe Infected: Trojan-Downloader.Win32.AutoIt.is 1
F:\Programy\Iphone software\The best iPhone ringtones and wallpapers\iphone_wall.exe Infected: Trojan-Downloader.Win32.AutoIt.is 1
F:\Programy\pc translator 2007 + jazyky\PC Translator 2007.iso Infected: Trojan.Win32.Genome.mij 1
F:\Programy\PC Translator 2007 CZ\2007_upload_Server2003\PC Translator 2007.iso Infected: Trojan.Win32.Genome.mij 1
F:\Programy\PC Translator 2007 CZ\2007_upload_Server2003.part1.rar Infected: Trojan.Win32.Genome.mij 1
F:\Programy\PC Translator 2007 CZ\2007_upload_Server2003.part2.rar Infected: Trojan.Win32.Genome.mij 1
F:\Programy\radmin31.zip Infected: not-a-virus:RemoteAdmin.Win32.RAdmin.n 2

The selected area was scanned.

[jaro3]

Jo , můžeš vše smazat.
Jak se chová comp , je stabilní?

[legendaryboy]

no ted ten sem dal scan toho C: a po 3 h se pc seklo, takze tvrdy reset, a tentkrat uz vim kde to je a jdu cilene do Documents and Settings

[Swll]

Mas pravdu vzdy kdyz se neco p..... tak ja muzu vzdy cekat jeste neco nejsi v tom sam

[legendaryboy]

ted mi nejde nainstalovat a spustit scan pod FF, prechazim na Operu, koukam nejni to spatny browser....

[jaro3]

Budeme pokračovat zítra., dnes již tu nemohu být..

[legendaryboy]

--------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER 7 REPORT
Saturday, February 28, 2009
Operating System: Microsoft Windows XP Professional Service Pack 3 (build 2600)
Kaspersky Online Scanner 7 version: 7.0.25.0
Program database last update: Saturday, February 28, 2009 20:42:23
Records in database: 1856620
--------------------------------------------------------------------------------

Scan settings:
Scan using the following database: extended
Scan archives: yes
Scan mail databases: yes

Scan area - Folder:
C:\Documents and Settings

Scan statistics:
Files scanned: 29480
Threat name: 1
Infected objects: 1
Suspicious objects: 0
Duration of the scan: 00:21:36


File name / Threat name / Threats count
C:\Documents and Settings\Petr\Local Settings\Data aplikací\Downloaded Installations\{DA0CEEE4-E986-4AA0-BDB4-1AD53E77A054}\rserv31.msi Infected: not-a-virus:RemoteAdmin.Win32.RAdmin.n 1

The selected area was scanned.

[jaro3]

Můžeš najít a smazat další crack..:
C:\Documents and Settings\Petr\Local Settings\Data aplikací\Downloaded Installations\{DA0CEEE4-E986-4AA0-BDB4-1AD53E77A054}\rserv31.msi
Upozorňuji , že příště jak Ti tam uvidím cracky a keygeny , požádám o lock.Snad si se dostatečně poučil.

Ještě toto, pokud tam máš OTMoveIt, tak stahovat nemusíš.
Stáhni si program OTMoveIt3 (by OldTimer) a ulož si ho na disk C a spusť ho.
- Do levého sloupce (Paste Instructions for Items to be Moved) zkopíruj tyto cesty:
Poznámka: Nepoužij k označení funkci VYBRAT VŠE

Kód: Vybrat vše

:Processes
explorer.exe

:files
c:\windows\system32\dllcache\OLD*.tmp

:Commands
[purity]
[emptytemp]
[start explorer]
[Reboot]

Po zkopírování klikni na tlačítko MoveIt! a vlož sem následně celý obsah z pravého sloupce, jinak uložený ve složce C:\_OTMoveIt\MovedFiles\, který bude informovat o výsledcích
- Je možné, že pokud nebudou moci být soubory odstraněny, budeš dotázán na restart počítače, v tom případě restart potvrď
Vlož pak také nový log z HJT.

[legendaryboy]

No byl sem moc duverivy vuci vsemu co se da na netu sehnat a moc sem spolehal na to ze mam NOD32 a dalsi programy ze me ochrani. Vytrestal sem se sam... 2 mesice lecim infekce.

========== PROCESSES ==========
Process explorer.exe killed successfully.
========== FILES ==========
c:\windows\system32\dllcache\OLD12.tmp moved successfully.
c:\windows\system32\dllcache\OLD22A.tmp moved successfully.
c:\windows\system32\dllcache\OLD23B.tmp moved successfully.
c:\windows\system32\dllcache\OLD23F.tmp moved successfully.
c:\windows\system32\dllcache\OLD243.tmp moved successfully.
c:\windows\system32\dllcache\OLD247.tmp moved successfully.
c:\windows\system32\dllcache\OLD24B.tmp moved successfully.
c:\windows\system32\dllcache\OLD2E.tmp moved successfully.
c:\windows\system32\dllcache\OLD3.tmp moved successfully.
c:\windows\system32\dllcache\OLD31.tmp moved successfully.
c:\windows\system32\dllcache\OLD34.tmp moved successfully.
c:\windows\system32\dllcache\OLD37.tmp moved successfully.
c:\windows\system32\dllcache\OLD3A.tmp moved successfully.
c:\windows\system32\dllcache\OLD3D.tmp moved successfully.
c:\windows\system32\dllcache\OLD4.tmp moved successfully.
c:\windows\system32\dllcache\OLD5.tmp moved successfully.
c:\windows\system32\dllcache\OLD6.tmp moved successfully.
c:\windows\system32\dllcache\OLD7.tmp moved successfully.
c:\windows\system32\dllcache\OLD8.tmp moved successfully.
c:\windows\system32\dllcache\OLD807.tmp moved successfully.
c:\windows\system32\dllcache\OLD80A.tmp moved successfully.
c:\windows\system32\dllcache\OLD80D.tmp moved successfully.
c:\windows\system32\dllcache\OLD810.tmp moved successfully.
c:\windows\system32\dllcache\OLD813.tmp moved successfully.
c:\windows\system32\dllcache\OLD816.tmp moved successfully.
c:\windows\system32\dllcache\OLD81A.tmp moved successfully.
c:\windows\system32\dllcache\OLD81D.tmp moved successfully.
c:\windows\system32\dllcache\OLD822.tmp moved successfully.
c:\windows\system32\dllcache\OLD825.tmp moved successfully.
c:\windows\system32\dllcache\OLD828.tmp moved successfully.
c:\windows\system32\dllcache\OLD82B.tmp moved successfully.
c:\windows\system32\dllcache\OLD82E.tmp moved successfully.
c:\windows\system32\dllcache\OLD831.tmp moved successfully.
c:\windows\system32\dllcache\OLD834.tmp moved successfully.
c:\windows\system32\dllcache\OLD837.tmp moved successfully.
c:\windows\system32\dllcache\OLD83A.tmp moved successfully.
c:\windows\system32\dllcache\OLD83E.tmp moved successfully.
c:\windows\system32\dllcache\OLD841.tmp moved successfully.
c:\windows\system32\dllcache\OLD844.tmp moved successfully.
c:\windows\system32\dllcache\OLD847.tmp moved successfully.
c:\windows\system32\dllcache\OLD84A.tmp moved successfully.
c:\windows\system32\dllcache\OLD84D.tmp moved successfully.
c:\windows\system32\dllcache\OLD850.tmp moved successfully.
c:\windows\system32\dllcache\OLD853.tmp moved successfully.
c:\windows\system32\dllcache\OLD856.tmp moved successfully.
c:\windows\system32\dllcache\OLD85A.tmp moved successfully.
c:\windows\system32\dllcache\OLD85D.tmp moved successfully.
c:\windows\system32\dllcache\OLD861.tmp moved successfully.
c:\windows\system32\dllcache\OLD864.tmp moved successfully.
c:\windows\system32\dllcache\OLD867.tmp moved successfully.
c:\windows\system32\dllcache\OLD86A.tmp moved successfully.
c:\windows\system32\dllcache\OLD86D.tmp moved successfully.
c:\windows\system32\dllcache\OLD871.tmp moved successfully.
c:\windows\system32\dllcache\OLD875.tmp moved successfully.
c:\windows\system32\dllcache\OLD878.tmp moved successfully.
c:\windows\system32\dllcache\OLD87B.tmp moved successfully.
c:\windows\system32\dllcache\OLD87F.tmp moved successfully.
c:\windows\system32\dllcache\OLD883.tmp moved successfully.
c:\windows\system32\dllcache\OLD887.tmp moved successfully.
c:\windows\system32\dllcache\OLD88B.tmp moved successfully.
c:\windows\system32\dllcache\OLD88F.tmp moved successfully.
c:\windows\system32\dllcache\OLD893.tmp moved successfully.
c:\windows\system32\dllcache\OLD896.tmp moved successfully.
c:\windows\system32\dllcache\OLD8A.tmp moved successfully.
c:\windows\system32\dllcache\OLD9.tmp moved successfully.
c:\windows\system32\dllcache\OLD95.tmp moved successfully.
c:\windows\system32\dllcache\OLDA.tmp moved successfully.
c:\windows\system32\dllcache\OLDC.tmp moved successfully.
c:\windows\system32\dllcache\OLDD.tmp moved successfully.
c:\windows\system32\dllcache\OLDD2.tmp moved successfully.
c:\windows\system32\dllcache\OLDD6.tmp moved successfully.
c:\windows\system32\dllcache\OLDDA.tmp moved successfully.
c:\windows\system32\dllcache\OLDDE.tmp moved successfully.
c:\windows\system32\dllcache\OLDE2.tmp moved successfully.
c:\windows\system32\dllcache\OLDE6.tmp moved successfully.
c:\windows\system32\dllcache\OLDEA.tmp moved successfully.
c:\windows\system32\dllcache\OLDEE.tmp moved successfully.
c:\windows\system32\dllcache\OLDF.tmp moved successfully.
========== COMMANDS ==========
File delete failed. C:\DOCUME~1\Petr\LOCALS~1\Temp\hsperfdata_Petr\3948 scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\Petr\LOCALS~1\Temp\etilqs_6tDLVoSRhir1KXtcYYEk scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
Local Service Temp folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
Local Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\fb_2140.lck scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_137c.dat scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_4c8.dat scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_64c.dat scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_994.dat scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_ab4.dat scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_cec.dat scheduled to be deleted on reboot.
Windows Temp folder emptied.
File delete failed. C:\Documents and Settings\Petr\Data aplikací\Sun\Java\Deployment\cache\6.0\33\5fcd8121-712aef3d scheduled to be deleted on reboot.
Java cache emptied.
File delete failed. C:\Documents and Settings\Petr\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\4o3l9ne1.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\Petr\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\4o3l9ne1.default\XUL.mfl scheduled to be deleted on reboot.
FireFox cache emptied.
Opera cache emptied.
Temp folders emptied.
Explorer started successfully

OTMoveIt3 by OldTimer - Version 1.0.8.0 log created on 03012009_081001

Files moved on Reboot...
File C:\DOCUME~1\Petr\LOCALS~1\Temp\hsperfdata_Petr\3948 not found!
File C:\DOCUME~1\Petr\LOCALS~1\Temp\etilqs_6tDLVoSRhir1KXtcYYEk not found!
File move failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be moved on reboot.
File move failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be moved on reboot.
File C:\WINDOWS\temp\fb_2140.lck not found!
File C:\WINDOWS\temp\Perflib_Perfdata_137c.dat not found!
File C:\WINDOWS\temp\Perflib_Perfdata_4c8.dat not found!
File C:\WINDOWS\temp\Perflib_Perfdata_64c.dat not found!
File C:\WINDOWS\temp\Perflib_Perfdata_994.dat not found!
File C:\WINDOWS\temp\Perflib_Perfdata_ab4.dat not found!
File C:\WINDOWS\temp\Perflib_Perfdata_cec.dat not found!
C:\Documents and Settings\Petr\Data aplikací\Sun\Java\Deployment\cache\6.0\33\5fcd8121-712aef3d moved successfully.
C:\Documents and Settings\Petr\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\4o3l9ne1.default\urlclassifier3.sqlite moved successfully.
C:\Documents and Settings\Petr\Local Settings\Data aplikací\Mozilla\Firefox\Profiles\4o3l9ne1.default\XUL.mfl moved successfully.