Prosim o kontrolu logu Vyřešeno

[Massacre]

Je to zajimavy no, zadnej program nic nenajde. Ta zprava tu vyskakuje porad do kola, nekdy casteji nekdy min casteji. Kaspersky ted bezi, jakmile dobehne tak sem log hodim, ale pochybuju ze ten neco najde, zkousel sem to uz kolikrat. Jeste by me zajmalo jestli je normalni tohle: http://www.pourtoi.xf.cz/svchost.jpg Jinak ten Rootkit unhooker, jak sem sem hazel ten log tak ten mi psal neco ve smyslu ze Possible Rootkit activity detected. A nevim co tim myslel teda, myslel sem ze to bude nekde v tom logu.

[Reklama]

[Massacre]

Tohle je jedinej log kterej ten Kaspersky vypisuje, proste opet nic nenasel no. Takze to asi format pc :)
Full Scan: completed 17 minutes ago (events: 2, objects: 358542, time: 00:40:13)
16.11.2009 13:09:56 Task started
16.11.2009 13:50:09 Task completed

Jinak tady je ta sranda co sem o ni mluvil uplne nazacatku, asi taky nicemu nepomuze
Full Scan: malfunction (events: 65, objects: 54, time: Unknown)
13.11.2009 15:24:51 Task started
13.11.2009 15:43:03 Detected: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\10OXSWU6\n328[3].exe
13.11.2009 15:43:03 Detected: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\10OXSWU6\n328[1].exe
13.11.2009 15:43:03 Detected: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\10OXSWU6\n328[2].exe
13.11.2009 15:43:32 Deleted: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\10OXSWU6\n328[1].exe
13.11.2009 15:43:32 Detected: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\10OXSWU6\n328[4].exe
13.11.2009 15:43:33 Deleted: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\10OXSWU6\n328[3].exe
13.11.2009 15:43:33 Detected: Trojan.Win32.Sasfis.ipw C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\10OXSWU6\n329[1].exe
13.11.2009 15:43:37 Deleted: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\10OXSWU6\n328[2].exe
13.11.2009 15:43:38 Detected: Trojan.Win32.Sasfis.ipw C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\10OXSWU6\n329[2].exe
13.11.2009 15:43:42 Deleted: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\10OXSWU6\n328[4].exe
13.11.2009 15:43:42 Detected: Trojan.Win32.Sasfis.ipw C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\10OXSWU6\n329[3].exe
13.11.2009 15:43:47 Deleted: Trojan.Win32.Sasfis.ipw C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\10OXSWU6\n329[1].exe
13.11.2009 15:43:47 Detected: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\10OXSWU6\n329[4].exe
13.11.2009 15:43:51 Deleted: Trojan.Win32.Sasfis.ipw C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\10OXSWU6\n329[2].exe
13.11.2009 15:43:51 Detected: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\10OXSWU6\n329[5].exe
13.11.2009 15:43:56 Deleted: Trojan.Win32.Sasfis.ipw C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\10OXSWU6\n329[3].exe
13.11.2009 15:43:56 Detected: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\10OXSWU6\n329[6].exe
13.11.2009 15:44:01 Deleted: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\10OXSWU6\n329[4].exe
13.11.2009 15:44:01 Detected: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\10OXSWU6\n329[7].exe
13.11.2009 15:44:05 Deleted: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\10OXSWU6\n329[5].exe
13.11.2009 15:44:05 Detected: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\10OXSWU6\n329[8].exe
13.11.2009 15:44:10 Deleted: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\10OXSWU6\n329[6].exe
13.11.2009 15:44:10 Detected: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\10OXSWU6\n329[9].exe
13.11.2009 15:44:21 Deleted: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\10OXSWU6\n329[7].exe
13.11.2009 15:44:21 Detected: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\N6FADJAW\n329[1].exe
13.11.2009 15:44:25 Deleted: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\10OXSWU6\n329[8].exe
13.11.2009 15:44:25 Detected: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5\10OXSWU6\n328[1].exe
13.11.2009 15:44:48 Deleted: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\10OXSWU6\n329[9].exe
13.11.2009 15:44:48 Detected: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5\10OXSWU6\n328[2].exe
13.11.2009 15:44:48 Deleted: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\N6FADJAW\n329[1].exe
13.11.2009 15:44:49 Detected: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5\10OXSWU6\n328[3].exe
13.11.2009 15:44:53 Cannot be deleted: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5\10OXSWU6\n328[1].exe Access denied
13.11.2009 15:44:53 Will be deleted on system restart: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5\10OXSWU6\n328[1].exe
13.11.2009 15:44:53 Detected: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5\10OXSWU6\n328[4].exe
13.11.2009 15:44:58 Cannot be deleted: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5\10OXSWU6\n328[2].exe Access denied
13.11.2009 15:44:58 Will be deleted on system restart: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5\10OXSWU6\n328[2].exe
13.11.2009 15:44:58 Detected: Trojan.Win32.Sasfis.ipw C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5\10OXSWU6\n329[1].exe
13.11.2009 15:45:02 Cannot be deleted: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5\10OXSWU6\n328[3].exe Access denied
13.11.2009 15:45:02 Will be deleted on system restart: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5\10OXSWU6\n328[3].exe
13.11.2009 15:45:02 Detected: Trojan.Win32.Sasfis.ipw C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5\10OXSWU6\n329[2].exe
13.11.2009 15:45:07 Cannot be deleted: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5\10OXSWU6\n328[4].exe Access denied
13.11.2009 15:45:07 Will be deleted on system restart: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5\10OXSWU6\n328[4].exe
13.11.2009 15:45:07 Detected: Trojan.Win32.Sasfis.ipw C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5\10OXSWU6\n329[3].exe
13.11.2009 15:45:12 Cannot be deleted: Trojan.Win32.Sasfis.ipw C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5\10OXSWU6\n329[1].exe Access denied
13.11.2009 15:45:12 Will be deleted on system restart: Trojan.Win32.Sasfis.ipw C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5\10OXSWU6\n329[1].exe
13.11.2009 15:45:12 Detected: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5\10OXSWU6\n329[4].exe
13.11.2009 15:45:16 Cannot be deleted: Trojan.Win32.Sasfis.ipw C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5\10OXSWU6\n329[2].exe Access denied
13.11.2009 15:45:16 Will be deleted on system restart: Trojan.Win32.Sasfis.ipw C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5\10OXSWU6\n329[2].exe
13.11.2009 15:45:16 Detected: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5\10OXSWU6\n329[5].exe
13.11.2009 15:45:21 Cannot be deleted: Trojan.Win32.Sasfis.ipw C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5\10OXSWU6\n329[3].exe Access denied
13.11.2009 15:45:21 Will be deleted on system restart: Trojan.Win32.Sasfis.ipw C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5\10OXSWU6\n329[3].exe
13.11.2009 15:45:21 Detected: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5\10OXSWU6\n329[6].exe
13.11.2009 15:45:25 Cannot be deleted: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5\10OXSWU6\n329[4].exe Access denied
13.11.2009 15:45:25 Will be deleted on system restart: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5\10OXSWU6\n329[4].exe
13.11.2009 15:45:26 Detected: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5\10OXSWU6\n329[7].exe
13.11.2009 15:45:30 Cannot be deleted: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5\10OXSWU6\n329[5].exe Access denied
13.11.2009 15:45:30 Will be deleted on system restart: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5\10OXSWU6\n329[5].exe
13.11.2009 15:45:30 Detected: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5\10OXSWU6\n329[8].exe
13.11.2009 15:45:35 Cannot be deleted: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5\10OXSWU6\n329[6].exe Access denied
13.11.2009 15:45:35 Will be deleted on system restart: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5\10OXSWU6\n329[6].exe
13.11.2009 15:45:35 Detected: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5\10OXSWU6\n329[9].exe
13.11.2009 15:45:39 Cannot be deleted: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5\10OXSWU6\n329[7].exe Access denied
13.11.2009 15:45:39 Will be deleted on system restart: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5\10OXSWU6\n329[7].exe
13.11.2009 15:45:39 Detected: Trojan.Win32.Sasfis.teh C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files\Content.IE5\N6FADJAW\n329[1].exe

[pitimir]

Ad rootkit: Ano, je tam hlasenie o moznej aktivite rootkitu, avsak nemam nic...lokaciu, nazov, velkost, proste nic, z coho by som sa mohol odlepit dalej. Avsak je tu moznnost, ze to patri pod Daemon Tools, ten zvykne robit takyto bordel v logoch.

Ad log: Z neho je evidentne, ze tahas bordel z netu (resp. ze si ho tahal). Vyguglit sa o tej tvojej odrode smejda neda poriadne nic.


Skusal si uz pouzit MWAV?

[Massacre]

Zkousel sem vsechno, tezko rict co to bylo, ale diky za pomoc :) Zformatoval sem pc, tak je to vsechno v pohode.

[pitimir]

Aj to je riesenie a povedzme si otvorene - v tomto pripade asi najrozumnejsie :)