Malwarebytes' Anti-Malware 1.51.1.1800
www.malwarebytes.org

Verze databze: 7650

Windows 6.0.6002 Service Pack 2
Internet Explorer 9.0.8112.16421

4.9.2011 17:56:34
mbam-log-2011-09-04 (17-56-11).txt

Typ: pln kontrola (C:\|D:\|)
Kontrolovan objekty: 302916
Uplynul as: 49 minut, 39 sekund

Infikovan procesy v pamti: 9
Infikovan moduly v pamti: 0
Infikovan kle v registru: 10
Infikovan hodnoty v registru: 3
Infikovan datov poloky v registru: 4
Infikovan sloky: 1
Infikovan soubory: 28

Infikovan procesy v pamti:
c:\Windows\sysdriver32.exe (Trojan.Agent) -> 2908 -> No action taken.
c:\Windows\update.1\svchost.exe (Trojan.Dropper) -> 3132 -> No action taken.
c:\Windows\update.2\svchost.exe (Trojan.Downloader.H) -> 2752 -> No action taken.
c:\Windows\update.2\svchost.exe (Trojan.Downloader.H) -> 3436 -> No action taken.
c:\Windows\update.5.0\svchost.exe (Trojan.Downloader) -> 2772 -> No action taken.
c:\Windows\update.5.0\svchost.exe (Trojan.Downloader) -> 2664 -> No action taken.
c:\Windows\update.7.1\svchostdriver.exe (Spyware.Agent) -> 4304 -> No action taken.
c:\Windows\update.7.1\svchostdriver.exe (Spyware.Agent) -> 304 -> No action taken.
c:\Windows\update.tray-10-0-lnk\svchost.exe (Trojan.Dropper) -> 5024 -> No action taken.

Infikovan moduly v pamti:
(dn kodliv poloky nebyly zjitny)

Infikovan kle v registru:
HKEY_LOCAL_MACHINE\SOFTWARE\SERVICES32.EXE (Trojan.Agent) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\sysdriver32.exe (Trojan.Agent) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\systeminfog (Trojan.Agent) -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\wxpdrivers (Trojan.Agent) -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\wxpdrivers (Trojan.Agent) -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ddservice (Spyware.Agent) -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\srvbtcclient (Trojan.Downloader) -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\srviecheck (Trojan.Downloader.H) -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\srvsysdriver32 (Trojan.Agent) -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wxpdrivers (Trojan.Dropper) -> No action taken.

Infikovan hodnoty v registru:
HKEY_LOCAL_MACHINE\SOFTWARE\Services32.exe\close (Trojan.Agent) -> Value: close -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ddservice\ImagePath (Trojan.Agent) -> Value: ImagePath -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wxpDrivers\ImagePath (Trojan.Agent) -> Value: ImagePath -> No action taken.

Infikovan datov poloky v registru:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SAFEBOOT\AlternateShell (Hijack.Altshell) -> Bad: (services32.exe) Good: (cmd.exe) -> No action taken.

Infikovan sloky:
c:\Windows\rpcminer (Trojan.BCMiner) -> No action taken.

Infikovan soubory:
c:\Users\Jana\downloads\flash-player.exe (Trojan.Dropper) -> No action taken.
c:\Windows\rpcminer\bitcoinminercuda_10.cubin (Trojan.BCMiner) -> No action taken.
c:\Windows\rpcminer\bitcoinminercuda_11.cubin (Trojan.BCMiner) -> No action taken.
c:\Windows\rpcminer\bitcoinminercuda_20.cubin (Trojan.BCMiner) -> No action taken.
c:\Windows\rpcminer\bitcoinmineropencl.cl (Trojan.BCMiner) -> No action taken.
c:\Windows\rpcminer\cudart32_32_16.dll (Trojan.BCMiner) -> No action taken.
c:\Windows\rpcminer\curllib.dll (Trojan.BCMiner) -> No action taken.
c:\Windows\rpcminer\libeay32.dll (Trojan.BCMiner) -> No action taken.
c:\Windows\rpcminer\libsasl.dll (Trojan.BCMiner) -> No action taken.
c:\Windows\rpcminer\openldap.dll (Trojan.BCMiner) -> No action taken.
c:\Windows\rpcminer\rpcminer-4way.exe (Trojan.BCMiner) -> No action taken.
c:\Windows\rpcminer\rpcminer-cpu.exe (Trojan.BCMiner) -> No action taken.
c:\Windows\rpcminer\rpcminer-cuda.exe (Trojan.BCMiner) -> No action taken.
c:\Windows\rpcminer\rpcminer-opencl.exe (Trojan.BCMiner) -> No action taken.
c:\Windows\rpcminer\ssleay32.dll (Trojan.BCMiner) -> No action taken.
c:\Windows\services32.exe (Trojan.Dropper) -> No action taken.
c:\Windows\sysdriver32.exe (Trojan.Agent) -> No action taken.
c:\Windows\sysdriver32_.exe (Trojan.Agent) -> No action taken.
c:\Windows\update.1\svchost.exe (Trojan.Dropper) -> No action taken.
c:\Windows\update.2\svchost.exe (Trojan.Downloader.H) -> No action taken.
c:\Windows\update.5.0\svchost.exe (Trojan.Downloader) -> No action taken.
c:\Windows\update.7.1\svchostdriver.exe (Spyware.Agent) -> No action taken.
c:\Windows\update.tray-10-0-lnk\svchost.exe (Trojan.Dropper) -> No action taken.
c:\Windows\update.tray-10-0\svchost.exe (Trojan.Dropper) -> No action taken.
c:\Windows\update.tray-15-0-lnk\svchost.exe (Trojan.Dropper) -> No action taken.
c:\Windows\update.tray-15-0\svchost.exe (Trojan.Dropper) -> No action taken.
c:\Windows\update.tray-7-0\svchost.exe (Trojan.Dropper) -> No action taken.
d:\Gochii\fotky- oslava narozenin\Filmy aj\robin hood the legend of sherwood\Crack.exe (Trojan.Bancos) -> No action taken.
