VIRY.CZ

Nakažení Fileless Malware
preklad:
https://translate.google.cz/translate?sl=en&tl=cs&js=y&prev=_t&hl=cs&ie=UTF-8&u=http%3A%2F%2Fwww.thesecurityblogger.com%2Fbeing-infected-with-fileless-malware%2F&edit-text=&act=url

puvodni clanek: http://www.thesecurityblogger.com/being-infected-with-fileless ...

# AdwCleaner v6.043 - Log vytvořen 23/02/2017 v 14:44:18
# Aktualizováno dne 27/01/2017 z Malwarebytes
# Databáze : 2017-02-23.2 [Server]
# Operační systém : Windows 7 Professional Service Pack 1 (X64)
# Uživatelské jméno : David - DAVID-PC
# Spuštěno z : C:\Users\David\Desktop\adwcleaner_6.043.exe ...

Ahoj zemana mi ukazuje vystrahu PUA ale myslim si ze je to pouze plany poplach ale projistotu davam log.

Report zemana:
Zemana AntiMalware 2.72.2.101 (přenosná verze)

-------------------------------------------------------
Scan Result : Dokončeno
Scan Date : 2017.2.22
Operating System : Windows 7 ...

Ahoj diky za preventivku vse ok dik lock

Logfile of random's system information tool 1.10 (written by random/random)
Run by Davidov at 2016-02-15 14:49:45
Microsoft Windows 7 Home Basic Service Pack 1
System drive C: has 33 GB (70%) free of 48 GB
Total RAM: 8189 MB (70% free)

HijackThis download failed

======Listing Processes ...

Ahoj rudy PC se chova v pohode tak snad to bude ok diky.

ComboFix 15-10-23.01 - Davidov 23.10.2015 21:00:55.2.4 - x64
Microsoft Windows 7 Home Basic 6.1.7601.1.1250.420.1029.18.8189.6883 [GMT 2:00]
Spuštěný z: c:\users\Davidov\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Davidov\Desktop\CFScript.txt
AV: avast! Antivirus *Disabled/Updated ...

ComboFix 15-10-21.01 - Davidov 21.10.2015 19:32:15.1.4 - x64
Microsoft Windows 7 Home Basic 6.1.7601.1.1250.420.1029.18.8189.6340 [GMT 2:00]
Spuštěný z: c:\users\Davidov\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
FW: avast! Antivirus *Disabled ...

# AdwCleaner v5.014 - Logfile created 20/10/2015 at 18:10:35
# Updated 18/10/2015 by Xplode
# Database : 2015-10-18.5 [Server]
# Operating system : Windows 7 Home Basic Service Pack 1 (x64)
# Username : Davidov - DAVIDOV-PC
# Running from : C:\Users\Davidov\Desktop\adwcleaner_5.014.exe
# Option ...

1)http://ulozto.cz/xXAk5UVb/podezrele-soubory-zip

heslo k archivu infected

2)virustotal http://s30.postimg.org/bchyc5vgd/Bez_n_zvu.jpg


3)rsis log:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Davidov at 2015-10-19 17:04:07
Microsoft Windows 7 Home Basic ...

OK rudy muzes zamknout a diky.

Zadne problemy snad je ciste.Zadne scanery nic neodhalily.

All processes killed
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Davidov
->Temp folder emptied: 829656 bytes
->Temporary Internet Files folder emptied: 1678469 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 11927359 bytes
->Flash cache emptied: 0 bytes ...

Projel jsem ho jeste emsisoft emergency kit vyhodil zaznam v registru mam ho smazat??

Emsisoft Emergency Kit - Version 10.0
Last update: 15.9.2015 20:00:12
User account: Davidov-PC\Davidov

Scan settings:

Scan type: Malware Scan
Objects: Rootkits, Memory, Traces, Files

Detect PUPs: On
Scan ...

Ahoj Rudy zde je log:

# AdwCleaner v5.007 - Logfile created 14/09/2015 at 19:13:39
# Updated 08/09/2015 by Xplode
# Database : 2015-09-10.1 [Server]
# Operating system : Windows 7 Home Basic Service Pack 1 (x64)
# Username : Davidov - DAVIDOV-PC
# Running from : C:\Users\Davidov\Desktop\adwcleaner ...