UFA.exe - facebook vir

[vyosek]

Co mate jako disk H:\ Nejaky externi disk

[aragor]

je tam 250GB disk rozdělený na oddíly:
F(systémový)
G
H

[vyosek]

Kliknete na Start a pote Spustit, pripadne pouzijte klavesou zkratku Win+R

• Vyskoci na Vas okenko, do ktereho zkopirujte text nize

• Kód: Vybrat vše

  chkdsk h: /f /r

• Kliknete na OK
• Nechte udelat kontrolu disku

[aragor]

kontrola už proběhla, co dál?

[vyosek]

Byl tam nalez nejakych chyb? Uz pisi docistovaci skript...

[aragor]

jak to skončilo, tak se to okno zavřelo, takže jsem neviděl co se tam napsalo, zkusím ještě restart, jestli to bude pořád tak dělat

[vyosek]

Znou aplikujte TDSSKiller - log pak sem

Dalsi skript pro ComboFix

Kód: Vybrat vše

KillAll::

Registry::
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"UpdateReminder"=-
"tray_ico"=-
"tray_ico1"=-
"tray_ico2"=-
"tray_ico3"=-
"tray_ico4"=-
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"EA Core"=-
"Steam"=-
"ICQ"=-

Folder::
f:\program files\Eset
f:\documents and settings\LocalService\Local Settings\Data aplikací\9c099e0a

Driver::
nod32drv
gupdatem

File::
f:\windows\system32\drivers\nod32drv.sys

Reboot::

[aragor]

17:25:38.0593 3920 TDSS rootkit removing tool 2.6.19.0 Nov 16 2011 12:18:50
17:25:40.0593 3920 ============================================================
17:25:40.0593 3920 Current date / time: 2011/11/18 17:25:40.0593
17:25:40.0609 3920 SystemInfo:
17:25:40.0609 3920
17:25:40.0609 3920 OS Version: 5.1.2600 ServicePack: 2.0
17:25:40.0609 3920 Product type: Workstation
17:25:40.0609 3920 ComputerName: HERNIPC
17:25:40.0609 3920 UserName: Hráč
17:25:40.0609 3920 Windows directory: F:\WINDOWS
17:25:40.0609 3920 System windows directory: F:\WINDOWS
17:25:40.0609 3920 Processor architecture: Intel x86
17:25:40.0609 3920 Number of processors: 1
17:25:40.0609 3920 Page size: 0x1000
17:25:40.0609 3920 Boot type: Normal boot
17:25:40.0609 3920 ============================================================
17:25:41.0046 3920 Initialize success
17:25:55.0593 2552 ============================================================
17:25:55.0593 2552 Scan started
17:25:55.0593 2552 Mode: Manual;
17:25:55.0593 2552 ============================================================
17:25:55.0875 2552 Abiosdsk - ok
17:25:55.0906 2552 abp480n5 - ok
17:25:55.0953 2552 acedrv11 (27f954120babb8a00f8745d8f5bc9b82) F:\WINDOWS\system32\drivers\acedrv11.sys
17:25:55.0968 2552 acedrv11 - ok
17:25:56.0000 2552 ACPI (fa2fbcda96d2385f773b059fe5a125a6) F:\WINDOWS\system32\DRIVERS\ACPI.sys
17:25:56.0015 2552 ACPI - ok
17:25:56.0046 2552 ACPIEC (afdff022a01f0b11c776f0860c3b282f) F:\WINDOWS\system32\drivers\ACPIEC.sys
17:25:56.0062 2552 ACPIEC - ok
17:25:56.0062 2552 adpu160m - ok
17:25:56.0109 2552 aec (1ee7b434ba961ef845de136224c30fec) F:\WINDOWS\system32\drivers\aec.sys
17:25:56.0125 2552 aec - ok
17:25:56.0156 2552 AFD (5ac495f4cb807b2b98ad2ad591e6d92e) F:\WINDOWS\System32\drivers\afd.sys
17:25:56.0156 2552 AFD - ok
17:25:56.0218 2552 Aha154x - ok
17:25:56.0234 2552 aic78u2 - ok
17:25:56.0265 2552 aic78xx - ok
17:25:56.0390 2552 ALCXWDM (c881453898eec64027274ebb3c8cbc0f) F:\WINDOWS\system32\drivers\ALCXWDM.SYS
17:25:56.0468 2552 ALCXWDM - ok
17:25:56.0500 2552 AliIde - ok
17:25:56.0531 2552 AmdK8 (59301936898ae62245a6f09c0aba9475) F:\WINDOWS\system32\DRIVERS\AmdK8.sys
17:25:56.0531 2552 AmdK8 - ok
17:25:56.0562 2552 Amfilter (779e01016ffc3eaf8190b2dbd852b9d0) F:\WINDOWS\system32\DRIVERS\Amfilter.sys
17:25:56.0562 2552 Amfilter - ok
17:25:56.0625 2552 AMON (687c3f2e78aeb209ade1cc265a2560bb) F:\WINDOWS\system32\drivers\amon.sys
17:25:56.0640 2552 AMON - ok
17:25:56.0671 2552 Amps2prt (c194327c210aade3f836869ae6b285a3) F:\WINDOWS\system32\DRIVERS\Amps2prt.sys
17:25:56.0671 2552 Amps2prt - ok
17:25:56.0703 2552 amsint - ok
17:25:56.0734 2552 Amusbprt (5139adcded43c45c486c75d7bf3a03a4) F:\WINDOWS\system32\DRIVERS\Amusbprt.sys
17:25:56.0734 2552 Amusbprt - ok
17:25:56.0765 2552 Arp1394 (f0d692b0bffb46e30eb3cea168bbc49f) F:\WINDOWS\system32\DRIVERS\arp1394.sys
17:25:56.0765 2552 Arp1394 - ok
17:25:56.0796 2552 asc - ok
17:25:56.0812 2552 asc3350p - ok
17:25:56.0828 2552 asc3550 - ok
17:25:56.0890 2552 AsyncMac (02000abf34af4c218c35d257024807d6) F:\WINDOWS\system32\DRIVERS\asyncmac.sys
17:25:56.0890 2552 AsyncMac - ok
17:25:56.0937 2552 atapi (cdfe4411a69c224bd1d11b2da92dac51) F:\WINDOWS\system32\DRIVERS\atapi.sys
17:25:56.0937 2552 atapi - ok
17:25:56.0984 2552 Atdisk - ok
17:25:57.0031 2552 Atmarpc (ec88da854ab7d7752ec8be11a741bb7f) F:\WINDOWS\system32\DRIVERS\atmarpc.sys
17:25:57.0046 2552 Atmarpc - ok
17:25:57.0062 2552 audstub (d9f724aa26c010a217c97606b160ed68) F:\WINDOWS\system32\DRIVERS\audstub.sys
17:25:57.0062 2552 audstub - ok
17:25:57.0109 2552 Beep (da1f27d85e0d1525f6621372e7b685e9) F:\WINDOWS\system32\drivers\Beep.sys
17:25:57.0109 2552 Beep - ok
17:25:57.0125 2552 catchme - ok
17:25:57.0156 2552 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) F:\WINDOWS\system32\drivers\cbidf2k.sys
17:25:57.0156 2552 cbidf2k - ok
17:25:57.0187 2552 CCDECODE (6163ed60b684bab19d3352ab22fc48b2) F:\WINDOWS\system32\DRIVERS\CCDECODE.sys
17:25:57.0187 2552 CCDECODE - ok
17:25:57.0218 2552 cd20xrnt - ok
17:25:57.0250 2552 Cdaudio (c1b486a7658353d33a10cc15211a873b) F:\WINDOWS\system32\drivers\Cdaudio.sys
17:25:57.0250 2552 Cdaudio - ok
17:25:57.0296 2552 Cdfs (cd7d5152df32b47f4e36f710b35aae02) F:\WINDOWS\system32\drivers\Cdfs.sys
17:25:57.0296 2552 Cdfs - ok
17:25:57.0328 2552 cdrbsdrv (351735695e9ead93de6af85d8beb1ca8) F:\WINDOWS\system32\drivers\cdrbsdrv.sys
17:25:57.0328 2552 cdrbsdrv - ok
17:25:57.0343 2552 cdrbsvsd - ok
17:25:57.0390 2552 Cdrom (af9c19b3100fe010496b1a27181fbf72) F:\WINDOWS\system32\DRIVERS\cdrom.sys
17:25:57.0390 2552 Cdrom - ok
17:25:57.0406 2552 Changer - ok
17:25:57.0453 2552 CmdIde - ok
17:25:57.0484 2552 Cpqarray - ok
17:25:57.0515 2552 CTIpHook - ok
17:25:57.0531 2552 dac2w2k - ok
17:25:57.0546 2552 dac960nt - ok
17:25:57.0609 2552 DCamUSBCompany (73d932edbbfc0b8e58f6a2c018fa2151) F:\WINDOWS\system32\DRIVERS\p35u.sys
17:25:57.0609 2552 DCamUSBCompany - ok
17:25:57.0671 2552 Disk (00ca44e4534865f8a3b64f7c0984bff0) F:\WINDOWS\system32\DRIVERS\disk.sys
17:25:57.0671 2552 Disk - ok
17:25:57.0734 2552 dmboot (e1968edec81c430108feb23ab07bdb14) F:\WINDOWS\system32\drivers\dmboot.sys
17:25:57.0765 2552 dmboot - ok
17:25:57.0812 2552 dmio (1b1520a82e396e46b9ae9fa6b03ff6c6) F:\WINDOWS\system32\drivers\dmio.sys
17:25:57.0812 2552 dmio - ok
17:25:57.0828 2552 dmload (e9317282a63ca4d188c0df5e09c6ac5f) F:\WINDOWS\system32\drivers\dmload.sys
17:25:57.0828 2552 dmload - ok
17:25:57.0906 2552 DMusic (a6f881284ac1150e37d9ae47ff601267) F:\WINDOWS\system32\drivers\DMusic.sys
17:25:57.0906 2552 DMusic - ok
17:25:57.0937 2552 dpti2o - ok
17:25:57.0968 2552 drmkaud (1ed4dbbae9f5d558dbba4cc450e3eb2e) F:\WINDOWS\system32\drivers\drmkaud.sys
17:25:57.0968 2552 drmkaud - ok
17:25:58.0031 2552 dtscsi (12aca694b50ea53563c1e7c99e7bb27d) F:\WINDOWS\System32\Drivers\dtscsi.sys
17:25:58.0031 2552 Suspicious file (NoAccess): F:\WINDOWS\System32\Drivers\dtscsi.sys. md5: 12aca694b50ea53563c1e7c99e7bb27d
17:25:58.0031 2552 dtscsi ( LockedFile.Multi.Generic ) - warning
17:25:58.0031 2552 dtscsi - detected LockedFile.Multi.Generic (1)
17:25:58.0046 2552 EagleNT - ok
17:25:58.0093 2552 ENTECH (fd9fc82f134b1c91004ffc76a5ae494b) F:\WINDOWS\system32\DRIVERS\ENTECH.sys
17:25:58.0093 2552 ENTECH - ok
17:25:58.0156 2552 Fastfat (3117f595e9615e04f05a54fc15a03b20) F:\WINDOWS\system32\drivers\Fastfat.sys
17:25:58.0156 2552 Fastfat - ok
17:25:58.0187 2552 Fdc (ced2e8396a8838e59d8fd529c680e02c) F:\WINDOWS\system32\DRIVERS\fdc.sys
17:25:58.0187 2552 Fdc - ok
17:25:58.0218 2552 Fips (266dab58619b17bdf37fabbd48d875ca) F:\WINDOWS\system32\drivers\Fips.sys
17:25:58.0218 2552 Fips - ok
17:25:58.0265 2552 Flpydisk (0dd1de43115b93f4d85e889d7a86f548) F:\WINDOWS\system32\DRIVERS\flpydisk.sys
17:25:58.0265 2552 Flpydisk - ok
17:25:58.0296 2552 FltMgr (3d234fb6d6ee875eb009864a299bea29) F:\WINDOWS\system32\DRIVERS\fltMgr.sys
17:25:58.0312 2552 FltMgr - ok
17:25:58.0343 2552 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) F:\WINDOWS\system32\drivers\Fs_Rec.sys
17:25:58.0343 2552 Fs_Rec - ok
17:25:58.0390 2552 Ftdisk (4e664d8541db4a66b73a24257e322e1f) F:\WINDOWS\system32\DRIVERS\ftdisk.sys
17:25:58.0390 2552 Ftdisk - ok
17:25:58.0421 2552 giveio (77ebf3e9386daa51551af429052d88d0) F:\WINDOWS\system32\giveio.sys
17:25:58.0453 2552 giveio - ok
17:25:58.0468 2552 GMSIPCI - ok
17:25:58.0562 2552 Gpc (c0f1d4a21de5a415df8170616703debf) F:\WINDOWS\system32\DRIVERS\msgpc.sys
17:25:58.0562 2552 Gpc - ok
17:25:58.0609 2552 hamachi (7929a161f9951d173ca9900fe7067391) F:\WINDOWS\system32\DRIVERS\hamachi.sys
17:25:58.0609 2552 hamachi - ok
17:25:58.0656 2552 HidUsb (1de6783b918f540149aa69943bdfeba8) F:\WINDOWS\system32\DRIVERS\hidusb.sys
17:25:58.0671 2552 HidUsb - ok
17:25:58.0687 2552 hpn - ok
17:25:58.0750 2552 HTTP (cb77bb47e67e84deb17ba29632501730) F:\WINDOWS\system32\Drivers\HTTP.sys
17:25:58.0765 2552 HTTP - ok
17:25:58.0796 2552 i2omgmt - ok
17:25:58.0812 2552 i2omp - ok
17:25:58.0859 2552 i8042prt (0f42de9909b5dbf2c48dd1a79d491af5) F:\WINDOWS\system32\DRIVERS\i8042prt.sys
17:25:58.0859 2552 i8042prt - ok
17:25:58.0921 2552 Imapi (f8aa320c6a0409c0380e5d8a99d76ec6) F:\WINDOWS\system32\DRIVERS\imapi.sys
17:25:58.0921 2552 Imapi - ok
17:25:58.0953 2552 ini910u - ok
17:25:58.0984 2552 IntelIde - ok
17:25:59.0015 2552 Ip6Fw (4448006b6bc60e6c027932cfc38d6855) F:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
17:25:59.0031 2552 Ip6Fw - ok
17:25:59.0062 2552 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) F:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
17:25:59.0062 2552 IpFilterDriver - ok
17:25:59.0078 2552 IpInIp (e1ec7f5da720b640cd8fb8424f1b14bb) F:\WINDOWS\system32\DRIVERS\ipinip.sys
17:25:59.0078 2552 IpInIp - ok
17:25:59.0125 2552 IpNat (e2168cbc7098ffe963c6f23f472a3593) F:\WINDOWS\system32\DRIVERS\ipnat.sys
17:25:59.0125 2552 IpNat - ok
17:25:59.0171 2552 IPSec (64537aa5c003a6afeee1df819062d0d1) F:\WINDOWS\system32\DRIVERS\ipsec.sys
17:25:59.0171 2552 IPSec - ok
17:25:59.0218 2552 IRENUM (50708daa1b1cbb7d6ac1cf8f56a24410) F:\WINDOWS\system32\DRIVERS\irenum.sys
17:25:59.0218 2552 IRENUM - ok
17:25:59.0265 2552 isapnp (1091528512e4dd7ed5fddcc4df1c53d7) F:\WINDOWS\system32\DRIVERS\isapnp.sys
17:25:59.0265 2552 isapnp - ok
17:25:59.0328 2552 k510bus (b1fe6feac5a501c89057a69c9f5e9d1f) F:\WINDOWS\system32\DRIVERS\k510bus.sys
17:25:59.0328 2552 k510bus - ok
17:25:59.0375 2552 k510mdfl (7a4ecca08560e8ff330acaa4128af7b0) F:\WINDOWS\system32\DRIVERS\k510mdfl.sys
17:25:59.0375 2552 k510mdfl - ok
17:25:59.0421 2552 k510mdm (094d532b727030c3b8b6bd3b743d9526) F:\WINDOWS\system32\DRIVERS\k510mdm.sys
17:25:59.0437 2552 k510mdm - ok
17:25:59.0484 2552 k510mgmt (ad67bfa00ba39c65551338ee001cdddd) F:\WINDOWS\system32\DRIVERS\k510mgmt.sys
17:25:59.0500 2552 k510mgmt - ok
17:25:59.0546 2552 k510obex (7d5094b00a47d871a48d035beb3a0922) F:\WINDOWS\system32\DRIVERS\k510obex.sys
17:25:59.0546 2552 k510obex - ok
17:25:59.0609 2552 Kbdclass (6f877bf8dc01a550cd666f3bedb2213c) F:\WINDOWS\system32\DRIVERS\kbdclass.sys
17:25:59.0609 2552 Kbdclass - ok
17:25:59.0656 2552 kbdhid (065b5a83aa78c0c7047bf22e0ab5c821) F:\WINDOWS\system32\DRIVERS\kbdhid.sys
17:25:59.0656 2552 kbdhid - ok
17:25:59.0718 2552 kmixer (ba5deda4d934e6288c2f66caf58d2562) F:\WINDOWS\system32\drivers\kmixer.sys
17:25:59.0718 2552 kmixer - ok
17:25:59.0765 2552 KSecDD (eb7ffe87fd367ea8fca0506f74a87fbb) F:\WINDOWS\system32\drivers\KSecDD.sys
17:25:59.0781 2552 KSecDD - ok
17:25:59.0796 2552 lbrtfdc - ok
17:25:59.0890 2552 LVcKap (efe6cb9600a6bef09834be558d7cf04e) F:\WINDOWS\system32\DRIVERS\LVcKap.sys
17:25:59.0937 2552 LVcKap - ok
17:26:00.0015 2552 LVMVDrv (8895475987655aae944544e30004b290) F:\WINDOWS\system32\DRIVERS\LVMVDrv.sys
17:26:00.0062 2552 LVMVDrv - ok
17:26:00.0093 2552 LVPr2Mon (985875cf257e5900c3f779a6929920e2) F:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys
17:26:00.0093 2552 LVPr2Mon - ok
17:26:00.0140 2552 LVUSBSta (ccff53b1fcdfa9ede919e3bdbd10d0fd) F:\WINDOWS\system32\drivers\lvusbsta.sys
17:26:00.0140 2552 LVUSBSta - ok
17:26:00.0187 2552 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) F:\WINDOWS\system32\drivers\mnmdd.sys
17:26:00.0187 2552 mnmdd - ok
17:26:00.0234 2552 Modem (60210deb037846afe521ebf349964f6b) F:\WINDOWS\system32\drivers\Modem.sys
17:26:00.0234 2552 Modem - ok
17:26:00.0265 2552 Mouclass (b160ec94114715675509115986400fd9) F:\WINDOWS\system32\DRIVERS\mouclass.sys
17:26:00.0265 2552 Mouclass - ok
17:26:00.0312 2552 mouhid (bb269eba740737ab749b214d568b6812) F:\WINDOWS\system32\DRIVERS\mouhid.sys
17:26:00.0312 2552 mouhid - ok
17:26:00.0343 2552 MountMgr (65653f3b4477f3c63e68a9659f85ee2e) F:\WINDOWS\system32\drivers\MountMgr.sys
17:26:00.0343 2552 MountMgr - ok
17:26:00.0375 2552 mraid35x - ok
17:26:00.0390 2552 MRxDAV (46edcc8f2db2f322c24f48785cb46366) F:\WINDOWS\system32\DRIVERS\mrxdav.sys
17:26:00.0406 2552 MRxDAV - ok
17:26:00.0453 2552 MRxSmb (957759996ceb19c6101a8f00a644af4f) F:\WINDOWS\system32\DRIVERS\mrxsmb.sys
17:26:00.0468 2552 MRxSmb ( Rootkit.Win32.ZAccess.g ) - infected
17:26:00.0468 2552 MRxSmb - detected Rootkit.Win32.ZAccess.g (0)
17:26:00.0484 2552 Msfs (561b3a4333ca2dbdba28b5b956822519) F:\WINDOWS\system32\drivers\Msfs.sys
17:26:00.0484 2552 Msfs - ok
17:26:00.0531 2552 MSKSSRV (ae431a8dd3c1d0d0610cdbac16057ad0) F:\WINDOWS\system32\drivers\MSKSSRV.sys
17:26:00.0531 2552 MSKSSRV - ok
17:26:00.0562 2552 MSPCLOCK (13e75fef9dfeb08eeded9d0246e1f448) F:\WINDOWS\system32\drivers\MSPCLOCK.sys
17:26:00.0578 2552 MSPCLOCK - ok
17:26:00.0593 2552 MSPQM (1988a33ff19242576c3d0ef9ce785da7) F:\WINDOWS\system32\drivers\MSPQM.sys
17:26:00.0593 2552 MSPQM - ok
17:26:00.0656 2552 mssmbios (469541f8bfd2b32659d5d463a6714bce) F:\WINDOWS\system32\DRIVERS\mssmbios.sys
17:26:00.0656 2552 mssmbios - ok
17:26:00.0734 2552 MSTEE (bf13612142995096ab084f2db7f40f77) F:\WINDOWS\system32\drivers\MSTEE.sys
17:26:00.0734 2552 MSTEE - ok
17:26:00.0765 2552 Mup (82035e0f41c2dd05ae41d27fe6cf7de1) F:\WINDOWS\system32\drivers\Mup.sys
17:26:00.0781 2552 Mup - ok
17:26:00.0796 2552 NABTSFEC (5c8dc6429c43dc6177c1fa5b76290d1a) F:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
17:26:00.0796 2552 NABTSFEC - ok
17:26:00.0828 2552 NDIS (558635d3af1c7546d26067d5d9b6959e) F:\WINDOWS\system32\drivers\NDIS.sys
17:26:00.0843 2552 NDIS - ok
17:26:00.0875 2552 ndiscm (b797ee2ef919c95561dee78b72b33e5b) F:\WINDOWS\system32\DRIVERS\NetMotCM.sys
17:26:00.0875 2552 ndiscm - ok
17:26:00.0906 2552 NdisIP (520ce427a8b298f54112857bcf6bde15) F:\WINDOWS\system32\DRIVERS\NdisIP.sys
17:26:00.0921 2552 NdisIP - ok
17:26:00.0953 2552 NdisTapi (08d43bbdacdf23f34d79e44ed35c1b4c) F:\WINDOWS\system32\DRIVERS\ndistapi.sys
17:26:00.0953 2552 NdisTapi - ok
17:26:01.0000 2552 Ndisuio (34d6cd56409da9a7ed573e1c90a308bf) F:\WINDOWS\system32\DRIVERS\ndisuio.sys
17:26:01.0000 2552 Ndisuio - ok
17:26:01.0031 2552 NdisWan (0b90e255a9490166ab368cd55a529893) F:\WINDOWS\system32\DRIVERS\ndiswan.sys
17:26:01.0046 2552 NdisWan - ok
17:26:01.0078 2552 NDProxy (59fc3fb44d2669bc144fd87826bb571f) F:\WINDOWS\system32\drivers\NDProxy.sys
17:26:01.0078 2552 NDProxy - ok
17:26:01.0125 2552 NetBIOS (3a2aca8fc1d7786902ca434998d7ceb4) F:\WINDOWS\system32\DRIVERS\netbios.sys
17:26:01.0125 2552 NetBIOS - ok
17:26:01.0187 2552 NetBT (0c80e410cd2f47134407ee7dd19cc86b) F:\WINDOWS\system32\DRIVERS\netbt.sys
17:26:01.0187 2552 NetBT - ok
17:26:01.0328 2552 NIC1394 (5c5c53db4fef16cf87b9911c7e8c6fbc) F:\WINDOWS\system32\DRIVERS\nic1394.sys
17:26:01.0328 2552 NIC1394 - ok
17:26:01.0359 2552 nod32drv (b4ea8cba9a69d0921b7bd89c8cf9e032) F:\WINDOWS\system32\drivers\nod32drv.sys
17:26:01.0375 2552 nod32drv - ok
17:26:01.0421 2552 Npfs (4f601bcb8f64ea3ac0994f98fed03f8e) F:\WINDOWS\system32\drivers\Npfs.sys
17:26:01.0421 2552 Npfs - ok
17:26:01.0484 2552 Ntfs (b78be402c3f63dd55521f73876951cdd) F:\WINDOWS\system32\drivers\Ntfs.sys
17:26:01.0500 2552 Ntfs - ok
17:26:01.0546 2552 Null (73c1e1f395918bc2c6dd67af7591a3ad) F:\WINDOWS\system32\drivers\Null.sys
17:26:01.0546 2552 Null - ok
17:26:01.0671 2552 nv (5645072033c2e51386e91bc137c0beb5) F:\WINDOWS\system32\DRIVERS\nv4_mini.sys
17:26:01.0781 2552 nv - ok
17:26:01.0828 2552 nvata (0344aa9113dc16eec379f4652020849d) F:\WINDOWS\system32\DRIVERS\nvata.sys
17:26:01.0828 2552 nvata - ok
17:26:01.0875 2552 NVENETFD (720cc533eecb65553bd86b139ca04433) F:\WINDOWS\system32\DRIVERS\NVENETFD.sys
17:26:01.0875 2552 NVENETFD - ok
17:26:01.0921 2552 nvnetbus (5f9f545cc5904dd8765f84ee1d056406) F:\WINDOWS\system32\DRIVERS\nvnetbus.sys
17:26:01.0921 2552 nvnetbus - ok
17:26:01.0953 2552 NVStrap (2cd7645c4cc2f643117f07d3ecdc66c0) F:\WINDOWS\system32\drivers\NVStrap.sys
17:26:01.0953 2552 NVStrap - ok
17:26:02.0000 2552 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) F:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
17:26:02.0000 2552 NwlnkFlt - ok
17:26:02.0031 2552 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) F:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
17:26:02.0031 2552 NwlnkFwd - ok
17:26:02.0078 2552 ohci1394 (0951db8e5823ea366b0e408d71e1ba2a) F:\WINDOWS\system32\DRIVERS\ohci1394.sys
17:26:02.0078 2552 ohci1394 - ok
17:26:02.0156 2552 Parport (76a18caa2fefb28a4ced38d76837e86e) F:\WINDOWS\system32\DRIVERS\parport.sys
17:26:02.0156 2552 Parport - ok
17:26:02.0187 2552 PartMgr (3334430c29dc338092f79c38ef7b4cd0) F:\WINDOWS\system32\drivers\PartMgr.sys
17:26:02.0187 2552 PartMgr - ok
17:26:02.0234 2552 ParVdm (1fae19d0457176318bba4a8795656ebc) F:\WINDOWS\system32\drivers\ParVdm.sys
17:26:02.0234 2552 ParVdm - ok
17:26:02.0265 2552 PCASp50 - ok
17:26:02.0312 2552 pccsmcfd (fd2041e9ba03db7764b2248f02475079) F:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
17:26:02.0312 2552 pccsmcfd - ok
17:26:02.0375 2552 PCI (b7979f37bb7b9df2230046134955e6e7) F:\WINDOWS\system32\DRIVERS\pci.sys
17:26:02.0375 2552 PCI - ok
17:26:02.0406 2552 PCIDump - ok
17:26:02.0437 2552 PCIIde (2da4ec85e0ea7a45c6b2a05820492d5a) F:\WINDOWS\system32\DRIVERS\pciide.sys
17:26:02.0437 2552 PCIIde - ok
17:26:02.0500 2552 Pcmcia (90505755634407d4ef4c6dea60fc1df9) F:\WINDOWS\system32\drivers\Pcmcia.sys
17:26:02.0500 2552 Pcmcia - ok
17:26:02.0515 2552 PDCOMP - ok
17:26:02.0546 2552 PDFRAME - ok
17:26:02.0562 2552 PDRELI - ok
17:26:02.0578 2552 PDRFRAME - ok
17:26:02.0640 2552 pepifilter (1c23843f1f61a07e2aaaba80136cda19) F:\WINDOWS\system32\DRIVERS\lv302af.sys
17:26:02.0640 2552 pepifilter - ok
17:26:02.0656 2552 perc2 - ok
17:26:02.0687 2552 perc2hib - ok
17:26:02.0796 2552 PID_PEPI (87a74c342b9b291cb013093d5df7b916) F:\WINDOWS\system32\DRIVERS\LV302V32.SYS
17:26:02.0828 2552 PID_PEPI - ok
17:26:02.0890 2552 PptpMiniport (1c5cc65aac0783c344f16353e60b72ac) F:\WINDOWS\system32\DRIVERS\raspptp.sys
17:26:02.0906 2552 PptpMiniport - ok
17:26:02.0953 2552 Processor (9a10e4fd13824823da50d4758bd0a645) F:\WINDOWS\system32\DRIVERS\processr.sys
17:26:02.0953 2552 Processor - ok
17:26:02.0984 2552 PSched (48671f327553dcf1d27f6197f622a668) F:\WINDOWS\system32\DRIVERS\psched.sys
17:26:03.0000 2552 PSched - ok
17:26:03.0031 2552 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) F:\WINDOWS\system32\DRIVERS\ptilink.sys
17:26:03.0031 2552 Ptilink - ok
17:26:03.0062 2552 ql1080 - ok
17:26:03.0078 2552 Ql10wnt - ok
17:26:03.0093 2552 ql12160 - ok
17:26:03.0125 2552 ql1240 - ok
17:26:03.0140 2552 ql1280 - ok
17:26:03.0203 2552 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) F:\WINDOWS\system32\DRIVERS\rasacd.sys
17:26:03.0203 2552 RasAcd - ok
17:26:03.0265 2552 Rasl2tp (98faeb4a4dcf812ba1c6fca4aa3e115c) F:\WINDOWS\system32\DRIVERS\rasl2tp.sys
17:26:03.0265 2552 Rasl2tp - ok
17:26:03.0296 2552 RasPppoe (7306eeed8895454cbed4669be9f79faa) F:\WINDOWS\system32\DRIVERS\raspppoe.sys
17:26:03.0296 2552 RasPppoe - ok
17:26:03.0312 2552 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) F:\WINDOWS\system32\DRIVERS\raspti.sys
17:26:03.0312 2552 Raspti - ok
17:26:03.0359 2552 Rdbss (03b965b1ca47f6ef60eb5e51cb50e0af) F:\WINDOWS\system32\DRIVERS\rdbss.sys
17:26:03.0359 2552 Rdbss - ok
17:26:03.0406 2552 RDPCDD (4912d5b403614ce99c28420f75353332) F:\WINDOWS\system32\DRIVERS\RDPCDD.sys
17:26:03.0406 2552 RDPCDD - ok
17:26:03.0437 2552 rdpdr (a2cae2c60bc37e0751ef9dda7ceaf4ad) F:\WINDOWS\system32\DRIVERS\rdpdr.sys
17:26:03.0453 2552 rdpdr - ok
17:26:03.0515 2552 RDPWD (b54cd38a9ebfbf2b3561426e3fe26f62) F:\WINDOWS\system32\drivers\RDPWD.sys
17:26:03.0515 2552 RDPWD - ok
17:26:03.0562 2552 redbook (aba13d33e1f888c9a68599a48a8840d6) F:\WINDOWS\system32\DRIVERS\redbook.sys
17:26:03.0562 2552 redbook - ok
17:26:03.0640 2552 RivaTuner32 (2c2e12d8355e2b8baee1876da0079195) F:\Program Files\RivaTuner v2.0 RC 16\RivaTuner32.sys
17:26:03.0640 2552 RivaTuner32 - ok
17:26:03.0750 2552 Secdrv (07f7f501ad50de2ba2d5842d9b6d6155) F:\WINDOWS\system32\DRIVERS\secdrv.sys
17:26:03.0750 2552 Secdrv - ok
17:26:03.0796 2552 serenum (a2d868aeeff612e70e213c451a70cafb) F:\WINDOWS\system32\DRIVERS\serenum.sys
17:26:03.0796 2552 serenum - ok
17:26:03.0828 2552 Serial (c1ddbc85251551a840212999da3d95f3) F:\WINDOWS\system32\DRIVERS\serial.sys
17:26:03.0828 2552 Serial - ok
17:26:03.0875 2552 sermouse (61490899036b14dedc24babd847d7001) F:\WINDOWS\system32\DRIVERS\sermouse.sys
17:26:03.0875 2552 sermouse - ok
17:26:03.0921 2552 sfdrv01 (4c0d673281178cb496011a2e28571fc8) F:\WINDOWS\system32\drivers\sfdrv01.sys
17:26:03.0937 2552 sfdrv01 - ok
17:26:03.0953 2552 sfhlp02 (15be2b5e4dc5b8623cf167720682abc9) F:\WINDOWS\system32\drivers\sfhlp02.sys
17:26:03.0953 2552 sfhlp02 - ok
17:26:04.0015 2552 Sfloppy (0d13b6df6e9e101013a7afb0ce629fe0) F:\WINDOWS\system32\drivers\Sfloppy.sys
17:26:04.0015 2552 Sfloppy - ok
17:26:04.0046 2552 sfvfs02 (d5a7e09d2c6a702809e49190d52adc9f) F:\WINDOWS\system32\drivers\sfvfs02.sys
17:26:04.0046 2552 sfvfs02 - ok
17:26:04.0109 2552 Simbad - ok
17:26:04.0156 2552 SLIP (5caeed86821fa2c6139e32e9e05ccdc9) F:\WINDOWS\system32\DRIVERS\SLIP.sys
17:26:04.0156 2552 SLIP - ok
17:26:04.0218 2552 sonypvs1 (dfadfc2c86662f40759bf02add27d569) F:\WINDOWS\system32\DRIVERS\sonypvs1.sys
17:26:04.0218 2552 sonypvs1 - ok
17:26:04.0234 2552 Sparrow - ok
17:26:04.0281 2552 speedfan (5d6401db90ec81b71f8e2c5c8f0fef23) F:\WINDOWS\system32\speedfan.sys
17:26:04.0296 2552 speedfan - ok
17:26:04.0343 2552 splitter (0ce218578fff5f4f7e4201539c45c78f) F:\WINDOWS\system32\drivers\splitter.sys
17:26:04.0343 2552 splitter - ok
17:26:04.0421 2552 sptd (2e8d17d1b721e0fc2e8e956bb1057ce1) F:\WINDOWS\system32\Drivers\sptd.sys
17:26:04.0421 2552 Suspicious file (NoAccess): F:\WINDOWS\system32\Drivers\sptd.sys. md5: 2e8d17d1b721e0fc2e8e956bb1057ce1
17:26:04.0421 2552 sptd ( LockedFile.Multi.Generic ) - warning
17:26:04.0421 2552 sptd - detected LockedFile.Multi.Generic (1)
17:26:04.0468 2552 sr (a74035ea526db97d9d50d2143a55f5cf) F:\WINDOWS\system32\DRIVERS\sr.sys
17:26:04.0468 2552 sr - ok
17:26:04.0515 2552 Srv (e03b4ea274c9e509cca7f9f0cec24232) F:\WINDOWS\system32\DRIVERS\srv.sys
17:26:04.0515 2552 Srv - ok
17:26:04.0546 2552 streamip (284c57df5dc7abca656bc2b96a667afb) F:\WINDOWS\system32\DRIVERS\StreamIP.sys
17:26:04.0546 2552 streamip - ok
17:26:04.0593 2552 swenum (03c1bae4766e2450219d20b993d6e046) F:\WINDOWS\system32\DRIVERS\swenum.sys
17:26:04.0593 2552 swenum - ok
17:26:04.0625 2552 swmidi (94abc808fc4b6d7d2bbf42b85e25bb4d) F:\WINDOWS\system32\drivers\swmidi.sys
17:26:04.0625 2552 swmidi - ok
17:26:04.0671 2552 symc810 - ok
17:26:04.0703 2552 symc8xx - ok
17:26:04.0734 2552 sym_hi - ok
17:26:04.0765 2552 sym_u3 - ok
17:26:04.0812 2552 sysaudio (650ad082d46bac0e64c9c0e0928492fd) F:\WINDOWS\system32\drivers\sysaudio.sys
17:26:04.0812 2552 sysaudio - ok
17:26:04.0875 2552 Tcpip (1dbf125862891817f374f407626967f4) F:\WINDOWS\system32\DRIVERS\tcpip.sys
17:26:04.0875 2552 Tcpip - ok
17:26:04.0921 2552 TDPIPE (38d437cf2d98965f239b0abcd66dcb0f) F:\WINDOWS\system32\drivers\TDPIPE.sys
17:26:04.0921 2552 TDPIPE - ok
17:26:04.0937 2552 TDTCP (ed0580af02502d00ad8c4c066b156be9) F:\WINDOWS\system32\drivers\TDTCP.sys
17:26:04.0937 2552 TDTCP - ok
17:26:04.0984 2552 TermDD (a540a99c281d933f3d69d55e48727f47) F:\WINDOWS\system32\DRIVERS\termdd.sys
17:26:04.0984 2552 TermDD - ok
17:26:05.0031 2552 TosIde - ok
17:26:05.0093 2552 TrueSight (f69641efdb19acb4753b0155f7fdeed5) f:\windows\system32\drivers\TrueSight.sys
17:26:05.0093 2552 TrueSight - ok
17:26:05.0156 2552 Udfs (12f70256f140cd7d52c58c7048fde657) F:\WINDOWS\system32\drivers\Udfs.sys
17:26:05.0156 2552 Udfs - ok
17:26:05.0171 2552 ultra - ok
17:26:05.0218 2552 Update (aff2e5045961bbc0a602bb6f95eb1345) F:\WINDOWS\system32\DRIVERS\update.sys
17:26:05.0218 2552 Update - ok
17:26:05.0265 2552 usbaudio (45a0d14b26c35497ad93bce7e15c9941) F:\WINDOWS\system32\drivers\usbaudio.sys
17:26:05.0281 2552 usbaudio - ok
17:26:05.0328 2552 usbccgp (bffd9f120cc63bcbaa3d840f3eef9f79) F:\WINDOWS\system32\DRIVERS\usbccgp.sys
17:26:05.0328 2552 usbccgp - ok
17:26:05.0359 2552 usbehci (15e993ba2f6946b2bfbbfcd30398621e) F:\WINDOWS\system32\DRIVERS\usbehci.sys
17:26:05.0359 2552 usbehci - ok
17:26:05.0390 2552 usbhub (c72f40947f92cea56a8fb532edf025f1) F:\WINDOWS\system32\DRIVERS\usbhub.sys
17:26:05.0390 2552 usbhub - ok
17:26:05.0421 2552 usbohci (bdfe799a8531bad8a5a985821fe78760) F:\WINDOWS\system32\DRIVERS\usbohci.sys
17:26:05.0421 2552 usbohci - ok
17:26:05.0453 2552 usbprint (a42369b7cd8886cd7c70f33da6fcbcf5) F:\WINDOWS\system32\DRIVERS\usbprint.sys
17:26:05.0468 2552 usbprint - ok
17:26:05.0484 2552 usbscan (a6bc71402f4f7dd5b77fd7f4a8ddba85) F:\WINDOWS\system32\DRIVERS\usbscan.sys
17:26:05.0484 2552 usbscan - ok
17:26:05.0531 2552 usbstor (6cd7b22193718f1d17a47a1cd6d37e75) F:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
17:26:05.0531 2552 usbstor - ok
17:26:05.0578 2552 vax347b (61aa77e5d9950ca59c0db7f24cfa21b3) F:\WINDOWS\system32\DRIVERS\vax347b.sys
17:26:05.0578 2552 vax347b - ok
17:26:05.0593 2552 vax347s (113e4b318bbaa7483ca4e582a4d63f49) F:\WINDOWS\system32\Drivers\vax347s.sys
17:26:05.0593 2552 vax347s - ok
17:26:05.0640 2552 vaxscsi (92cebc2bc7be2c8d49391b365569f306) F:\WINDOWS\System32\Drivers\vaxscsi.sys
17:26:05.0640 2552 Suspicious file (NoAccess): F:\WINDOWS\System32\Drivers\vaxscsi.sys. md5: 92cebc2bc7be2c8d49391b365569f306
17:26:05.0640 2552 vaxscsi ( LockedFile.Multi.Generic ) - warning
17:26:05.0640 2552 vaxscsi - detected LockedFile.Multi.Generic (1)
17:26:05.0687 2552 VgaSave (8a60edd72b4ea5aea8202daf0e427925) F:\WINDOWS\System32\drivers\vga.sys
17:26:05.0687 2552 VgaSave - ok
17:26:05.0703 2552 ViaIde - ok
17:26:05.0734 2552 VolSnap (cd8cce067f7e9cbd762c00bdddecaa34) F:\WINDOWS\system32\drivers\VolSnap.sys
17:26:05.0734 2552 VolSnap - ok
17:26:05.0828 2552 w810bus (5e8b60606fc4173b69cdecd964f22d28) F:\WINDOWS\system32\DRIVERS\w810bus.sys
17:26:05.0828 2552 w810bus - ok
17:26:05.0859 2552 w810mdfl (c0cc4f5a3c58b4c07ec4a82a5ae24714) F:\WINDOWS\system32\DRIVERS\w810mdfl.sys
17:26:05.0859 2552 w810mdfl - ok
17:26:05.0890 2552 w810mdm (2aafeedc3bfe14419cbce7ceea59dd05) F:\WINDOWS\system32\DRIVERS\w810mdm.sys
17:26:05.0906 2552 w810mdm - ok
17:26:05.0921 2552 w810mgmt (b0037db3f890d0ffcf7e35f356a435ec) F:\WINDOWS\system32\DRIVERS\w810mgmt.sys
17:26:05.0921 2552 w810mgmt - ok
17:26:05.0953 2552 w810obex (bf609636068f17246f94b490c5812483) F:\WINDOWS\system32\DRIVERS\w810obex.sys
17:26:05.0968 2552 w810obex - ok
17:26:06.0031 2552 Wanarp (984ef0b9788abf89974cfed4bfbaacbc) F:\WINDOWS\system32\DRIVERS\wanarp.sys
17:26:06.0031 2552 Wanarp - ok
17:26:06.0046 2552 WDICA - ok
17:26:06.0093 2552 wdmaud (efd235ca22b57c81118c1aeb4798f1c1) F:\WINDOWS\system32\drivers\wdmaud.sys
17:26:06.0093 2552 wdmaud - ok
17:26:06.0234 2552 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) F:\WINDOWS\System32\drivers\ws2ifsl.sys
17:26:06.0234 2552 WS2IFSL - ok
17:26:06.0265 2552 WSTCODEC (d5842484f05e12121c511aa93f6439ec) F:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
17:26:06.0265 2552 WSTCODEC - ok
17:26:06.0328 2552 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk0\DR0
17:26:06.0375 2552 \Device\Harddisk0\DR0 - ok
17:26:06.0390 2552 Boot (0x1200) (db9b8e6a22a4f76e584d600b40dcb492) \Device\Harddisk0\DR0\Partition0
17:26:06.0390 2552 \Device\Harddisk0\DR0\Partition0 - ok
17:26:06.0406 2552 Boot (0x1200) (cce3cc662f71d46739cd15e0cca49b27) \Device\Harddisk0\DR0\Partition1
17:26:06.0406 2552 \Device\Harddisk0\DR0\Partition1 - ok
17:26:06.0437 2552 Boot (0x1200) (ea0b6741385da5a2769b8624b3fbbebd) \Device\Harddisk0\DR0\Partition2
17:26:06.0437 2552 \Device\Harddisk0\DR0\Partition2 - ok
17:26:06.0453 2552 ============================================================
17:26:06.0453 2552 Scan finished
17:26:06.0453 2552 ============================================================
17:26:06.0453 2568 Detected object count: 4
17:26:06.0453 2568 Actual detected object count: 4
17:26:34.0734 2568 dtscsi ( LockedFile.Multi.Generic ) - skipped by user
17:26:34.0734 2568 dtscsi ( LockedFile.Multi.Generic ) - User select action: Skip
17:26:34.0843 2568 VerifyFileNameVersionInfo: GetFileVersionInfoSizeW(F:\WINDOWS\system32\drivers\mrxsmb.sys) error 1813
17:26:36.0203 2568 Backup copy found, using it..
17:26:36.0234 2568 F:\WINDOWS\system32\DRIVERS\mrxsmb.sys - will be cured on reboot
17:26:36.0968 2568 F:\WINDOWS\system32\c_63380.nls - will be deleted on reboot
17:26:37.0687 2568 MRxSmb ( Rootkit.Win32.ZAccess.g ) - User select action: Cure
17:26:37.0687 2568 sptd ( LockedFile.Multi.Generic ) - skipped by user
17:26:37.0687 2568 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
17:26:37.0703 2568 vaxscsi ( LockedFile.Multi.Generic ) - skipped by user
17:26:37.0703 2568 vaxscsi ( LockedFile.Multi.Generic ) - User select action: Skip
17:26:58.0843 2232 Deinitialize success

[aragor]

ComboFix 11-11-18.02 - Hráč 18.11.2011 17:37:35.4.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.2.1250.420.1029.18.1023.691 [GMT 1:00]
Spuštěný z: F:\ComboFix.exe
Použité ovládací přepínače :: F:\CFScript.txt
AV: Eset NOD32 Antivirus 2.70 *Disabled/Outdated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
.
FILE ::
"f:\windows\system32\drivers\nod32drv.sys"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
f:\program files\Eset
f:\program files\Eset\bitdefender_tsecurity.exe
f:\program files\Eset\pr_imon.dll
f:\windows\system32\drivers\nod32drv.sys
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_GUPDATEM
-------\Legacy_NOD32DRV
-------\Service_gupdatem
-------\Service_nod32drv
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-10-18 do 2011-11-18 )))))))))))))))))))))))))))))))
.
.
2011-11-17 17:09 . 2011-11-17 17:09 -------- d-----w- F:\rsit
2011-11-17 17:09 . 2011-11-17 17:09 -------- d-----w- f:\program files\trend micro
2011-11-17 15:27 . 2011-11-17 15:43 111872 ----a-w- f:\windows\system32\drivers\TrueSight.sys
2011-11-08 20:23 . 2011-11-17 17:54 -------- d-sh--w- f:\documents and settings\LocalService\Local Settings\Data aplikací\9c099e0a
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-11-18 16:28 . 2004-08-03 21:15 453120 ----a-w- f:\windows\system32\drivers\mrxsmb.sys
2011-10-31 17:45 . 2011-09-09 22:25 414368 ----a-w- f:\windows\system32\FlashPlayerCPLApp.cpl
2011-10-01 12:48 . 2011-06-29 17:49 43520 ----a-w- f:\windows\system32\CmdLineExt03.dll
2007-09-11 18:31 . 2007-09-11 18:31 1132810 ----a-w- f:\program files\parentalcontrolsetup.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="f:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-09-09 68856]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"="SOUNDMAN.EXE" [2005-10-24 90112]
"NvCplDaemon"="f:\windows\system32\NvCpl.dll" [2006-08-11 7630848]
"nwiz"="nwiz.exe" [2006-08-11 1519616]
"WheelMouse"="f:\program files\A4Tech\Mouse\Amoumain.exe" [2006-02-17 163840]
"CHotkey"="mHotkey.exe" [2004-12-27 550912]
"StopHid"="StopHid.exe" [2003-10-06 40960]
"NvMediaCenter"="f:\windows\system32\NvMcTray.dll" [2006-08-11 86016]
"RivaTunerStartupDaemon"="f:\program files\RivaTuner v2.0 RC 16\RivaTuner.exe" [2006-05-21 2375680]
"LVComs"="f:\windows\system32\LVComS.exe" [1999-10-28 77824]
"Sony Ericsson PC Suite"="f:\program files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" [BU]
"nod32kui"="f:\program files\Eset\nod32kui.exe" [BU]
"parentalcontrol"="f:\program files\parentalcontrol\parentalcontrol.exe" [2006-06-13 30720]
"SunJavaUpdateSched"="f:\program files\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 132496]
"LogitechCommunicationsManager"="f:\program files\Common Files\Logitech\LComMgr\Communications_Helper.exe" [2006-10-31 284184]
"LogitechQuickCamRibbon"="f:\program files\Logitech\QuickCam10\QuickCam10.exe" [2006-11-15 746520]
"LVCOMSX"="f:\program files\Common Files\Logitech\LComMgr\LVComSX.exe" [2006-11-15 244512]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="f:\windows\system32\CTFMON.EXE" [2004-08-17 15360]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableSecureUIAPaths"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0OODBS
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"g:\\Program files\\S4\\Exe\\S4_Main.exe"=
"g:\\Program files\\Firefly Studios\\Stronghold 2\\Stronghold2.exe"=
"g:\\Program files\\AoE3\\age3.exe"=
"g:\\Program files\\Stronghold Crusader\\Stronghold Crusader.exe"=
"g:\\Program files\\TrackMania Nations ESWC Special Edition\\TmNationsESWC.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"f:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe"=
"f:\\Program Files\\Microsoft Games\\Zoo Tycoon 2\\zt.exe"=
"f:\\Program Files\\ICQ7.4\\ICQ.exe"=
.
R0 sptd;sptd;f:\windows\system32\drivers\sptd.sys [28.9.2006 7:41 643072]
R0 vax347b;vax347b;f:\windows\system32\drivers\vax347b.sys [28.9.2006 9:26 159616]
R0 vax347s;vax347s;f:\windows\system32\drivers\vax347s.sys [28.9.2006 9:26 5248]
R2 acedrv11;acedrv11;f:\windows\system32\drivers\acedrv11.sys [30.7.2008 6:51 277736]
R3 vaxscsi;vaxscsi;f:\windows\system32\drivers\vaxscsi.sys [28.9.2006 7:50 223128]
S0 NVStrap;NVStrap;f:\windows\system32\drivers\NVStrap.sys [28.9.2006 14:09 3712]
S3 Amps2prt;A4Tech PS/2 Port Mouse Driver;f:\windows\system32\drivers\Amps2prt.sys [9.5.2006 15:27 13824]
S3 CTIpHook;CTIpHook;f:\windows\system32\Drivers\CTIpHook.sys --> f:\windows\system32\Drivers\CTIpHook.sys [?]
S3 DCamUSBCompany;Logitech QuickCam Pro USB;f:\windows\system32\drivers\p35u.sys [6.10.2006 17:07 90464]
S3 k510bus;Sony Ericsson K510 Driver driver (WDM);f:\windows\system32\drivers\k510bus.sys [2.1.2007 20:16 58288]
S3 k510mdfl;Sony Ericsson K510 USB WMC Modem Filter;f:\windows\system32\drivers\k510mdfl.sys [2.1.2007 20:16 8336]
S3 k510mdm;Sony Ericsson K510 USB WMC Modem Driver;f:\windows\system32\drivers\k510mdm.sys [2.1.2007 20:16 94064]
S3 k510mgmt;Sony Ericsson K510 USB WMC Device Management Drivers (WDM);f:\windows\system32\drivers\k510mgmt.sys [2.1.2007 20:16 85408]
S3 k510obex;Sony Ericsson K510 USB WMC OBEX Interface;f:\windows\system32\drivers\k510obex.sys [2.1.2007 20:16 83344]
S3 TrueSight;TrueSight;f:\windows\system32\drivers\TrueSight.sys [17.11.2011 16:27 111872]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.crawler.com/homepage.aspx?tbid=66019
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Crawler Search - tbr:iemenu
IE: E&xportovat do aplikace Microsoft Office Excel - f:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Google Sidewiki... - f:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
IE: {{73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - f:\program files\ICQ7.4\ICQ.exe
IE: {{7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - h:\překladače\WEBIE.DLL
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - h:\překladače\WEBIE.DLL
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - h:\překladače\WEBIE.DLL
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - h:\překladače\WEBIE.DLL
LSP: f:\windows\system32\imon.dll
TCP: DhcpNameServer = 192.168.0.1
Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - f:\program files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
FF - ProfilePath - f:\documents and settings\Hráč\Data aplikací\Mozilla\Firefox\Profiles\7i492ifd.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - f:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} - f:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}
FF - Ext: Crawler Toolbar: {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - f:\program files\Crawler\firefox
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
SafeBoot-90814905.sys
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-18 17:45
Windows 5.1.2600 Service Pack 2 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'lsass.exe'(844)
f:\windows\system32\imon.dll
.
- - - - - - - > 'explorer.exe'(8172)
f:\program files\Common Files\Logitech\LVMVFM\LVPrcInj.dll
f:\windows\system32\msi.dll
f:\windows\system32\imon.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
f:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
f:\windows\system32\nvsvc32.exe
f:\windows\SOUNDMAN.EXE
f:\windows\mHotkey.exe
f:\windows\StopHid.exe
f:\windows\system32\RUNDLL32.EXE
f:\windows\system32\oodag.exe
f:\windows\system32\PnkBstrA.exe
f:\windows\system32\PnkBstrB.exe
f:\program files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
f:\windows\system32\UAService7.exe
f:\windows\system32\wscntfy.exe
f:\program files\Common Files\Logishrd\LQCVFX\COCIManager.exe
.
**************************************************************************
.
Celkový čas: 2011-11-18 17:47:43 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-11-18 16:47
ComboFix2.txt 2011-11-18 12:02
ComboFix3.txt 2011-11-17 18:29
ComboFix4.txt 2011-11-17 18:01
.
Před spuštěním: Volných bajtů: 14 908 284 928
Po spuštění: Volných bajtů: 14 891 458 560
.
- - End Of File - - 204BD94352DADCF7BD17607F1552A508

[vyosek]

Nasledujici soubory otestujte na VirusTotalu (viz muj podpis)

• F:\WINDOWS\System32\Drivers\vaxscsi.sys
  F:\WINDOWS\System32\Drivers\dtscsi.sys
• Kliknete na Prochazet
• Soubor nehledejte, jen vlozte cestu souboru, ktery chci otestovat
• Kliknete na Send File
• Pokud na Vas vyskoci obrazovka jako je nize, tak kliknete na ReAnalyse
  
• Vysledek analyzy sem vlozte (jako odkaz)

Stahnete aswMBR http://public.avast.com/%7Egmerek/aswMBR.exe a ulozte jej na plochu.

• Utilitu spustte a prikazte ji, at skenuje - klik na Scan
• Kliknutim na Save log ulozte log aswMBR na plochu
• Obsah logu aswMBR mi sem vlozte

[aragor]

VirusTotal mi nic neukázal.

aswMBR version 0.9.8.986 Copyright(c) 2011 AVAST Software
Run date: 2011-11-18 18:22:44
-----------------------------
18:22:44.828 OS Version: Windows 5.1.2600 Service Pack 2
18:22:44.828 Number of processors: 1 586 0x2F02
18:22:44.828 ComputerName: HERNIPC UserName: Hráč
18:22:45.046 Initialize success
18:24:08.218 AVAST engine defs: 11111801
18:24:45.312 Service scanning
18:24:45.640 Service dtscsi F:\WINDOWS\System32\Drivers\dtscsi.sys **LOCKED** 32
18:24:45.859 Service sptd F:\WINDOWS\System32\Drivers\sptd.sys **LOCKED** 32
18:24:45.890 Service vaxscsi F:\WINDOWS\System32\Drivers\vaxscsi.sys **LOCKED** 32
18:24:46.406 Modules scanning
18:24:49.375 Disk 0 trace - called modules:
18:24:49.390 ntoskrnl.exe >>UNKNOWN [0x8738aeb0]<<
18:24:49.390 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x87245ab8]
18:24:49.390 \Driver\Disk[0x872a9a28] -> IRP_MJ_CREATE -> 0x8738aeb0
18:24:49.500 AVAST engine scan F:\WINDOWS
18:24:50.203 File: F:\WINDOWS\bitcoind.exe **INFECTED** Win32:Patched-WQ [Trj]
18:24:55.687 AVAST engine scan F:\WINDOWS\system32
18:26:19.046 AVAST engine scan F:\WINDOWS\system32\drivers
18:26:33.296 AVAST engine scan F:\Documents and Settings\Hráč
18:29:52.828 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\1067014.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:52.937 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\10981127-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:53.046 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\14554222-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:53.156 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\14939848-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:53.265 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\15763892-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:53.359 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\17095023-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:53.468 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\18221591-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:53.562 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\1836417-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:53.703 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\18555611-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:53.796 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\1931953-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:53.921 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\19541427-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:54.015 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\20342660-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:54.140 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\21645040-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:54.234 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\22888279-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:54.343 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\23756631-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:54.453 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\24863444-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:54.562 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\26178157-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:54.687 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\29061953-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:54.796 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\3178519-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:54.921 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\32797927-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:55.062 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\3308440.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:55.187 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\3402587-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:55.296 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\35104330-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:55.421 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\36386879-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:55.562 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\36439857-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:55.687 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\3659457-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:55.812 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\38345915-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:55.921 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\38802445-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:56.046 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\40731808-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:56.156 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\4198798-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:56.281 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\43057816-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:56.406 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\43347497-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:56.515 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\44238365-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:56.609 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\4536381-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:56.718 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\45583511-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:56.828 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\45774143-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:56.937 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\47822081-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:57.046 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\54711977-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:57.156 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\55413196-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:57.250 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\55579100-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:57.375 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\55705160-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:57.468 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\56577796-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:57.578 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\57437761-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:57.703 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\58769685-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:57.812 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\61010374-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:57.937 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\62296996-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:58.046 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\62319116-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:58.171 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\62985480-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:58.296 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\63677580-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:58.406 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\64500453-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:58.515 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\64868765-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:58.640 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\65911145-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:58.765 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\66984320-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:58.875 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\67147326-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:59.000 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\68521600-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:59.125 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\69118419-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:59.234 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\69166817-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:59.343 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\70938846-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:59.468 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\7339468.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:59.578 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\76729140-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:59.687 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\79154369-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:59.812 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\79430081-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:29:59.921 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\80558824-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:30:00.046 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\84434504-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:30:00.156 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\85800985-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:30:00.281 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\86660935-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:30:00.390 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\87330591-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:30:00.515 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\88942682-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:30:00.625 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\89302941-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:30:00.750 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\9196429-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:30:00.859 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\92304847-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:30:00.984 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\9501776.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:30:01.109 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\95563721-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:30:01.234 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\95691310-loader2.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:30:01.375 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\l1rezerv.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:30:02.406 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\svchost.exe.vir **INFECTED** Win32:Malware-gen
18:30:02.437 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\sysdriver32.exe.vir **INFECTED** Win32:Patched-WQ [Trj]
18:30:02.531 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\sysdriver32_.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:30:02.593 File: F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\systemup.exe.vir **INFECTED** Win32:Delf-QBF [Trj]
18:33:29.843 AVAST engine scan F:\Documents and Settings\All Users
18:34:04.796 File: F:\Documents and Settings\All Users\Dokumenty\eghywm.exe **INFECTED** Win32:Tenga
18:34:05.375 File: F:\Documents and Settings\All Users\Dokumenty\mlhoew.exe **INFECTED** Win32:Tenga
18:34:19.203 Scan finished successfully
18:40:56.796 The log file has been saved successfully to "F:\Documents and Settings\Hráč\Plocha\aswMBR.txt"

[vyosek]

Projedte to avp toolem http://www.viry.cz/forum/viewtopic.php?f=29&t=58179

[aragor]

už se to scanuje , až za 4 hodiny to má nějak být

[vyosek]

OK, pockame na vysledky...

[aragor]

Status: Disinfected (events: 33)
18.11.2011 19:14:15 Disinfected virus Virus.Win32.Tenga.a F:\Documents and Settings\All Users\Dokumenty\eghywm.exe High
18.11.2011 19:14:17 Disinfected virus Virus.Win32.Tenga.a F:\Documents and Settings\All Users\Dokumenty\mlhoew.exe High
18.11.2011 19:19:14 Disinfected Trojan program Trojan.Win32.Patched.mf F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\sysdriver32.exe.vir High
18.11.2011 19:34:06 Disinfected Trojan program Trojan.Win32.Patched.mf F:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe High
18.11.2011 19:34:06 Disinfected Trojan program Trojan.Win32.Patched.mf F:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe High
18.11.2011 19:37:22 Disinfected virus Net-Worm.Win32.Kido.ih F:\Qoobox\Quarantine\[4]-Submit_2011-11-18_12.50.35.zip High
18.11.2011 19:37:22 Disinfected virus Net-Worm.Win32.Kido.ih F:\Qoobox\Quarantine\[4]-Submit_2011-11-18_12.50.35.zip/lobxsme.dll High
18.11.2011 19:37:45 Disinfected Trojan program Trojan.Win32.Patched.mf F:\Qoobox\Quarantine\F\Program Files\Common Files\Logitech\LVMVFM\LVPrcSrv.exe.vir High
18.11.2011 19:37:45 Disinfected Trojan program Trojan.Win32.Patched.mf F:\Qoobox\Quarantine\F\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe.vir High
18.11.2011 19:37:47 Disinfected Trojan program Trojan.Win32.Patched.mf F:\Qoobox\Quarantine\F\Program Files\PC Connectivity Solution\ServiceLayer.exe.vir High
18.11.2011 19:37:53 Disinfected Trojan program Trojan.Win32.Patched.mf F:\Qoobox\Quarantine\F\WINDOWS\sysdriver32.exe.vir High
18.11.2011 19:37:59 Disinfected Trojan program Trojan.Win32.Patched.mf F:\Qoobox\Quarantine\F\WINDOWS\system32\oodag.exe.vir High
18.11.2011 19:37:59 Disinfected Trojan program Trojan.Win32.Patched.mf F:\Qoobox\Quarantine\F\WINDOWS\system32\nvsvc32.exe.vir High
18.11.2011 19:37:59 Disinfected Trojan program Trojan.Win32.Patched.mf F:\Qoobox\Quarantine\F\WINDOWS\system32\PnkBstrA.exe.vir High
18.11.2011 19:38:00 Disinfected Trojan program Trojan.Win32.Patched.mf F:\Qoobox\Quarantine\F\WINDOWS\system32\PnkBstrB.exe.vir High
18.11.2011 19:38:00 Disinfected Trojan program Trojan.Win32.Patched.mf F:\Qoobox\Quarantine\F\WINDOWS\system32\UAService7.exe.vir High
18.11.2011 19:38:01 Disinfected Trojan program Trojan.Win32.Patched.mf F:\Qoobox\Quarantine\F\WINDOWS\update.1\svchost.exe.vir High
18.11.2011 19:41:08 Disinfected Trojan program Trojan.Win32.Patched.mf F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP25\A0046336.exe High
18.11.2011 19:41:15 Disinfected Trojan program Trojan.Win32.Patched.mf F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP25\A0046343.exe High
18.11.2011 19:41:31 Disinfected Trojan program Trojan.Win32.Patched.mf F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP25\A0046348.exe High
18.11.2011 19:41:32 Disinfected Trojan program Trojan.Win32.Patched.mf F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP25\A0046349.exe High
18.11.2011 19:41:33 Disinfected Trojan program Trojan.Win32.Patched.mf F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP25\A0046350.exe High
18.11.2011 19:41:34 Disinfected Trojan program Trojan.Win32.Patched.mf F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP25\A0046351.exe High
18.11.2011 19:41:35 Disinfected Trojan program Trojan.Win32.Patched.mf F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP25\A0046352.exe High
18.11.2011 19:41:36 Disinfected Trojan program Trojan.Win32.Patched.mf F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP25\A0046353.exe High
18.11.2011 19:41:36 Disinfected Trojan program Trojan.Win32.Patched.mf F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP25\A0046354.exe High
18.11.2011 19:41:38 Disinfected Trojan program Trojan.Win32.Patched.mf F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP25\A0046355.exe High
18.11.2011 19:41:40 Disinfected Trojan program Trojan.Win32.Patched.mf F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP25\A0046357.exe High
18.11.2011 19:42:26 Disinfected virus Virus.Win32.Tenga.a F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP25\A0048608.exe High
18.11.2011 19:42:46 Disinfected virus Virus.Win32.Tenga.a F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP25\A0048609.exe High
18.11.2011 19:42:46 Disinfected Trojan program Trojan.Win32.Patched.mf F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP25\A0048610.exe High
18.11.2011 19:42:47 Disinfected Trojan program Trojan.Win32.Patched.mf F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP25\A0048611.exe High
18.11.2011 19:42:58 Disinfected Trojan program Trojan.Win32.Patched.mf F:\WINDOWS\bitcoind.exe High
Status: Deleted (events: 190)
18.11.2011 19:18:24 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\10981127-loader2.exe.vir High
18.11.2011 19:18:25 Deleted Trojan program Trojan.Win32.Swisyn.bqmb F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\1067014.exe.vir High
18.11.2011 19:18:25 Deleted Trojan program Trojan.Win32.Swisyn.bqmb F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\1067014.exe.vir//UPX High
18.11.2011 19:18:25 Deleted Trojan program Trojan.Win32.AntiAV.oao F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\svchost.exe.vir High
18.11.2011 19:18:27 Deleted Trojan program Trojan.Win32.Scar.ejki F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\14554222-loader2.exe.vir High
18.11.2011 19:18:28 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\14939848-loader2.exe.vir High
18.11.2011 19:18:28 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\15763892-loader2.exe.vir High
18.11.2011 19:18:29 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\17095023-loader2.exe.vir High
18.11.2011 19:18:29 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\18221591-loader2.exe.vir High
18.11.2011 19:18:30 Deleted Trojan program Trojan.Win32.Scar.ejki F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\1836417-loader2.exe.vir High
18.11.2011 19:18:31 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\18555611-loader2.exe.vir High
18.11.2011 19:18:32 Deleted Trojan program Trojan.Win32.Scar.ejki F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\1931953-loader2.exe.vir High
18.11.2011 19:18:32 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\19541427-loader2.exe.vir High
18.11.2011 19:18:33 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\20342660-loader2.exe.vir High
18.11.2011 19:18:34 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\21645040-loader2.exe.vir High
18.11.2011 19:18:34 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\22888279-loader2.exe.vir High
18.11.2011 19:18:35 Deleted Trojan program Trojan.Win32.Scar.ejki F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\23756631-loader2.exe.vir High
18.11.2011 19:18:35 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\24863444-loader2.exe.vir High
18.11.2011 19:18:36 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\26178157-loader2.exe.vir High
18.11.2011 19:18:37 Deleted Trojan program Trojan.Win32.Scar.ejki F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\29061953-loader2.exe.vir High
18.11.2011 19:18:37 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\3178519-loader2.exe.vir High
18.11.2011 19:18:38 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\32797927-loader2.exe.vir High
18.11.2011 19:18:38 Deleted Trojan program Trojan.Win32.Scar.ejgo F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\3308440.exe.vir High
18.11.2011 19:18:39 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\3402587-loader2.exe.vir High
18.11.2011 19:18:39 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\35104330-loader2.exe.vir High
18.11.2011 19:18:40 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\36386879-loader2.exe.vir High
18.11.2011 19:18:41 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\36439857-loader2.exe.vir High
18.11.2011 19:18:41 Deleted Trojan program Trojan.Win32.Scar.ejki F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\3659457-loader2.exe.vir High
18.11.2011 19:18:42 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\38345915-loader2.exe.vir High
18.11.2011 19:18:43 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\38802445-loader2.exe.vir High
18.11.2011 19:18:43 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\40731808-loader2.exe.vir High
18.11.2011 19:18:44 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\4198798-loader2.exe.vir High
18.11.2011 19:18:45 Deleted Trojan program Trojan.Win32.Scar.ejki F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\43057816-loader2.exe.vir High
18.11.2011 19:18:46 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\43347497-loader2.exe.vir High
18.11.2011 19:18:46 Deleted Trojan program Trojan.Win32.Scar.ejki F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\44238365-loader2.exe.vir High
18.11.2011 19:18:47 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\4536381-loader2.exe.vir High
18.11.2011 19:18:48 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\45583511-loader2.exe.vir High
18.11.2011 19:18:48 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\45774143-loader2.exe.vir High
18.11.2011 19:18:49 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\47822081-loader2.exe.vir High
18.11.2011 19:18:49 Deleted Trojan program Trojan.Win32.Scar.ejki F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\54711977-loader2.exe.vir High
18.11.2011 19:18:50 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\55413196-loader2.exe.vir High
18.11.2011 19:18:51 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\55579100-loader2.exe.vir High
18.11.2011 19:18:51 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\55705160-loader2.exe.vir High
18.11.2011 19:18:51 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\56577796-loader2.exe.vir High
18.11.2011 19:18:52 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\57437761-loader2.exe.vir High
18.11.2011 19:18:53 Deleted Trojan program Trojan.Win32.Scar.ejki F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\58769685-loader2.exe.vir High
18.11.2011 19:18:54 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\61010374-loader2.exe.vir High
18.11.2011 19:18:54 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\62296996-loader2.exe.vir High
18.11.2011 19:18:55 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\62319116-loader2.exe.vir High
18.11.2011 19:18:55 Deleted Trojan program Trojan.Win32.Scar.ejki F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\62985480-loader2.exe.vir High
18.11.2011 19:18:56 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\63677580-loader2.exe.vir High
18.11.2011 19:18:57 Deleted Trojan program Trojan.Win32.Scar.ejki F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\64500453-loader2.exe.vir High
18.11.2011 19:18:58 Deleted Trojan program Trojan.Win32.Scar.ejki F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\64868765-loader2.exe.vir High
18.11.2011 19:18:58 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\65911145-loader2.exe.vir High
18.11.2011 19:18:59 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\66984320-loader2.exe.vir High
18.11.2011 19:18:59 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\67147326-loader2.exe.vir High
18.11.2011 19:19:00 Deleted Trojan program Trojan.Win32.Scar.ejki F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\68521600-loader2.exe.vir High
18.11.2011 19:19:00 Deleted Trojan program Trojan.Win32.Scar.ejki F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\69118419-loader2.exe.vir High
18.11.2011 19:19:01 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\69166817-loader2.exe.vir High
18.11.2011 19:19:02 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\70938846-loader2.exe.vir High
18.11.2011 19:19:02 Deleted Trojan program Trojan.Win32.Scar.fafu F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\7339468.exe.vir High
18.11.2011 19:19:03 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\76729140-loader2.exe.vir High
18.11.2011 19:19:04 Deleted Trojan program Trojan.Win32.Scar.ejki F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\79154369-loader2.exe.vir High
18.11.2011 19:19:04 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\79430081-loader2.exe.vir High
18.11.2011 19:19:05 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\80558824-loader2.exe.vir High
18.11.2011 19:19:05 Deleted Trojan program Trojan.Win32.Scar.ejki F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\84434504-loader2.exe.vir High
18.11.2011 19:19:06 Deleted Trojan program Trojan.Win32.Scar.ejki F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\85800985-loader2.exe.vir High
18.11.2011 19:19:06 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\86660935-loader2.exe.vir High
18.11.2011 19:19:07 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\87330591-loader2.exe.vir High
18.11.2011 19:19:08 Deleted Trojan program Trojan.Win32.Scar.ejki F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\88942682-loader2.exe.vir High
18.11.2011 19:19:08 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\89302941-loader2.exe.vir High
18.11.2011 19:19:10 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\9196429-loader2.exe.vir High
18.11.2011 19:19:10 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\92304847-loader2.exe.vir High
18.11.2011 19:19:11 Deleted Trojan program Trojan.Win32.Scar.ejki F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\9501776.exe.vir High
18.11.2011 19:19:11 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\95563721-loader2.exe.vir High
18.11.2011 19:19:13 Deleted Trojan program Trojan.Win32.Scar.ekvr F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\95691310-loader2.exe.vir High
18.11.2011 19:19:15 Deleted Trojan program Trojan.Win32.Scar.ejfa F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\l1rezerv.exe.vir High
18.11.2011 19:19:15 Deleted Trojan program Trojan.Win32.Scar.ejfa F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\l1rezerv.exe.vir//UPX High
18.11.2011 19:19:15 Deleted Trojan program Trojan.Win32.Scar.fafu F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\sysdriver32_.exe.vir High
18.11.2011 19:37:42 Deleted Trojan program Trojan-Downloader.Win32.Injecter.gbi F:\Qoobox\Quarantine\F\Documents and Settings\Hráč\Data aplikací\10.tmp.vir High
18.11.2011 19:37:41 Deleted Trojan program Backdoor.Win32.IRCBot.ucy F:\Qoobox\Quarantine\F\Documents and Settings\Hráč\Data aplikací\11.tmp.vir High
18.11.2011 19:37:42 Deleted virus Net-Worm.Win32.Kolab.afdb F:\Qoobox\Quarantine\F\Documents and Settings\Hráč\Data aplikací\12.tmp.vir High
18.11.2011 19:37:42 Deleted Trojan program Trojan.Win32.AntiAV.oao F:\Qoobox\Quarantine\F\WINDOWS\update.tray-3-0\svchost.exe.vir High
18.11.2011 19:37:42 Deleted Trojan program Trojan.Win32.Scar.ehja F:\Qoobox\Quarantine\F\Documents and Settings\Hráč\Data aplikací\1B.tmp.vir High
18.11.2011 19:37:44 Deleted Trojan program Trojan-Downloader.Win32.Injecter.gbi F:\Qoobox\Quarantine\F\Documents and Settings\Hráč\Data aplikací\39AD.tmp.vir High
18.11.2011 19:37:44 Deleted Trojan program Backdoor.Win32.IRCBot.ucy F:\Qoobox\Quarantine\F\Documents and Settings\Hráč\Data aplikací\39A2.tmp.vir High
18.11.2011 19:37:53 Deleted Trojan program Trojan.Win32.Scar.ejfa F:\Qoobox\Quarantine\F\WINDOWS\l1rezerv.exe.vir High
18.11.2011 19:37:53 Deleted Trojan program Trojan.Win32.Scar.ejfa F:\Qoobox\Quarantine\F\WINDOWS\l1rezerv.exe.vir//UPX High
18.11.2011 19:37:56 Deleted Trojan program Trojan.Win32.Scar.fafu F:\Qoobox\Quarantine\F\WINDOWS\sysdriver32_.exe.vir High
18.11.2011 19:38:04 Deleted Trojan program Trojan.Win32.Swisyn.bqmb F:\Qoobox\Quarantine\F\WINDOWS\update.2\svchost.exe.vir High
18.11.2011 19:38:04 Deleted Trojan program Trojan.Win32.Swisyn.bqmb F:\Qoobox\Quarantine\F\WINDOWS\update.2\svchost.exe.vir//UPX High
18.11.2011 19:38:13 Deleted Trojan program Trojan.Win32.Swisyn.cacw F:\Qoobox\Quarantine\F\WINDOWS\update.5.0\svchost.exe.vir High
18.11.2011 19:38:13 Deleted Trojan program Trojan.Win32.Miner.v F:\Qoobox\Quarantine\F\WINDOWS\update.4.1\svchost.exe.vir High
18.11.2011 19:38:13 Deleted Trojan program Trojan.Win32.Miner.v F:\Qoobox\Quarantine\F\WINDOWS\update.4.1\svchost.exe.vir//UPX High
18.11.2011 19:38:13 Deleted Trojan program Trojan.Win32.Swisyn.cacw F:\Qoobox\Quarantine\F\WINDOWS\update.5.0\svchost.exe.vir//UPX High
18.11.2011 19:38:23 Deleted Trojan program Trojan.Win32.Swisyn.bsod F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP21\A0026618.exe High
18.11.2011 19:38:26 Deleted Trojan program Trojan.Win32.Scar.ejki F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP21\A0029742.exe High
18.11.2011 19:38:27 Deleted Trojan program Trojan.Win32.Scar.ejki F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP21\A0029743.exe High
18.11.2011 19:38:32 Deleted Trojan program Trojan.Win32.AntiAV.oao F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP23\A0031919.exe High
18.11.2011 19:38:32 Deleted Trojan program Trojan.Win32.Swisyn.byvr F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP23\A0031916.exe High
18.11.2011 19:38:32 Deleted Trojan program Trojan.Win32.Swisyn.byvr F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP23\A0031916.exe//UPX High
18.11.2011 19:38:33 Deleted Trojan program Trojan.Win32.Scar.fafu F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP23\A0031917.exe High
18.11.2011 19:38:40 Deleted Trojan program Rootkit.Win32.ZAccess.g F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP23\A0031947.sys High
18.11.2011 19:38:41 Deleted Trojan program Rootkit.Win32.ZAccess.g F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP23\A0031951.sys High
18.11.2011 19:38:36 Deleted Trojan program Backdoor.Win32.ZAccess.ang F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP23\A0031948.ini High
18.11.2011 19:38:37 Deleted Trojan program Backdoor.Win32.ZAccess.ang F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP23\A0031952.ini High
18.11.2011 19:38:39 Deleted Trojan program Trojan.Win32.Miner.i F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP23\A0031966.exe High
18.11.2011 19:38:39 Deleted Trojan program Trojan.Win32.Miner.i F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP23\A0031966.exe//UPX High
18.11.2011 19:38:41 Deleted Trojan program Trojan.Win32.Miner.k F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP23\A0031967.exe High
18.11.2011 19:38:41 Deleted Trojan program Trojan.Win32.Miner.k F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP23\A0031967.exe//UPX High
18.11.2011 19:39:16 Deleted Trojan program Rootkit.Win32.ZAccess.g F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP23\A0031971.sys High
18.11.2011 19:39:15 Deleted Trojan program Backdoor.Win32.ZAccess.ang F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP23\A0031972.ini High
18.11.2011 19:39:17 Deleted Trojan program Rootkit.Win32.ZAccess.g F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP23\A0031984.sys High
18.11.2011 19:39:16 Deleted Trojan program Backdoor.Win32.ZAccess.ang F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP23\A0031985.ini High
18.11.2011 19:39:19 Deleted Trojan program Rootkit.Win32.ZAccess.g F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP23\A0031988.sys High
18.11.2011 19:39:17 Deleted Trojan program Backdoor.Win32.ZAccess.ang F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP23\A0031989.ini High
18.11.2011 19:39:20 Deleted Trojan program Rootkit.Win32.ZAccess.g F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP23\A0032000.sys High
18.11.2011 19:39:18 Deleted Trojan program Backdoor.Win32.ZAccess.ang F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP23\A0032001.ini High
18.11.2011 19:39:21 Deleted Trojan program Rootkit.Win32.ZAccess.g F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP23\A0032018.sys High
18.11.2011 19:39:19 Deleted Trojan program Backdoor.Win32.ZAccess.ang F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP23\A0032019.ini High
18.11.2011 19:39:22 Deleted Trojan program Rootkit.Win32.ZAccess.g F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP23\A0033018.sys High
18.11.2011 19:39:21 Deleted Trojan program Backdoor.Win32.ZAccess.ang F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP23\A0033019.ini High
18.11.2011 19:39:24 Deleted Trojan program Rootkit.Win32.ZAccess.g F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP23\A0033034.sys High
18.11.2011 19:39:22 Deleted Trojan program Backdoor.Win32.ZAccess.ang F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP23\A0033035.ini High
18.11.2011 19:39:27 Deleted Trojan program Rootkit.Win32.ZAccess.g F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP23\A0033051.sys High
18.11.2011 19:39:25 Deleted Trojan program Backdoor.Win32.ZAccess.ang F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP23\A0033052.ini High
18.11.2011 19:39:29 Deleted Trojan program Rootkit.Win32.ZAccess.g F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0033065.sys High
18.11.2011 19:39:26 Deleted Trojan program Backdoor.Win32.ZAccess.ang F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0033066.ini High
18.11.2011 19:39:30 Deleted Trojan program Rootkit.Win32.ZAccess.g F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0033086.sys High
18.11.2011 19:39:28 Deleted Trojan program Backdoor.Win32.ZAccess.ang F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0033087.ini High
18.11.2011 19:39:31 Deleted Trojan program Rootkit.Win32.ZAccess.g F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0034086.sys High
18.11.2011 19:39:31 Deleted Trojan program Backdoor.Win32.ZAccess.ang F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0034087.ini High
18.11.2011 19:39:34 Deleted Trojan program Rootkit.Win32.ZAccess.g F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0034101.sys High
18.11.2011 19:39:32 Deleted Trojan program Backdoor.Win32.ZAccess.ang F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0034102.ini High
18.11.2011 19:39:35 Deleted Trojan program Rootkit.Win32.ZAccess.g F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0035101.sys High
18.11.2011 19:39:33 Deleted Trojan program Backdoor.Win32.ZAccess.ang F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0035102.ini High
18.11.2011 19:39:38 Deleted Trojan program Rootkit.Win32.ZAccess.g F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0036101.sys High
18.11.2011 19:39:35 Deleted Trojan program Backdoor.Win32.ZAccess.ang F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0036102.ini High
18.11.2011 19:39:39 Deleted Trojan program Rootkit.Win32.ZAccess.g F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0036116.sys High
18.11.2011 19:39:36 Deleted Trojan program Backdoor.Win32.ZAccess.ang F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0036117.ini High
18.11.2011 19:39:40 Deleted Trojan program Rootkit.Win32.ZAccess.g F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0037116.sys High
18.11.2011 19:39:38 Deleted Trojan program Backdoor.Win32.ZAccess.ang F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0037117.ini High
18.11.2011 19:39:41 Deleted Trojan program Rootkit.Win32.ZAccess.g F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0037121.sys High
18.11.2011 19:39:42 Deleted Trojan program Backdoor.Win32.ZAccess.ang F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0037122.ini High
18.11.2011 19:39:45 Deleted Trojan program Rootkit.Win32.ZAccess.g F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0038121.sys High
18.11.2011 19:39:42 Deleted Trojan program Backdoor.Win32.ZAccess.ang F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0038122.ini High
18.11.2011 19:39:46 Deleted Trojan program Rootkit.Win32.ZAccess.g F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0039121.sys High
18.11.2011 19:39:44 Deleted Trojan program Backdoor.Win32.ZAccess.ang F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0039122.ini High
18.11.2011 19:39:48 Deleted Trojan program Rootkit.Win32.ZAccess.g F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0040121.sys High
18.11.2011 19:39:48 Deleted Trojan program Backdoor.Win32.ZAccess.ang F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0040122.ini High
18.11.2011 19:39:52 Deleted Trojan program Rootkit.Win32.ZAccess.g F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0041121.sys High
18.11.2011 19:39:49 Deleted Trojan program Backdoor.Win32.ZAccess.ang F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0041122.ini High
18.11.2011 19:39:53 Deleted Trojan program Rootkit.Win32.ZAccess.g F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0042121.sys High
18.11.2011 19:39:50 Deleted Trojan program Backdoor.Win32.ZAccess.ang F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0042122.ini High
18.11.2011 19:39:53 Deleted Trojan program Rootkit.Win32.ZAccess.g F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0043121.sys High
18.11.2011 19:39:55 Deleted Trojan program Backdoor.Win32.ZAccess.ang F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0043122.ini High
18.11.2011 19:40:01 Deleted Trojan program Rootkit.Win32.ZAccess.g F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0043150.sys High
18.11.2011 19:39:58 Deleted Trojan program Backdoor.Win32.ZAccess.ang F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0043151.ini High
18.11.2011 19:40:01 Deleted Trojan program Trojan.Win32.Swisyn.byvr F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0043155.exe High
18.11.2011 19:40:02 Deleted Trojan program Trojan.Win32.Miner.i F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0043162.exe High
18.11.2011 19:40:01 Deleted Trojan program Trojan.Win32.Swisyn.byvr F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0043155.exe//UPX High
18.11.2011 19:40:02 Deleted Trojan program Trojan.Win32.Miner.i F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0043162.exe//UPX High
18.11.2011 19:40:11 Deleted Trojan program Rootkit.Win32.ZAccess.g F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0043167.sys High
18.11.2011 19:40:08 Deleted Trojan program Backdoor.Win32.ZAccess.ang F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0043168.ini High
18.11.2011 19:40:40 Deleted Trojan program Rootkit.Win32.ZAccess.g F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0043197.sys High
18.11.2011 19:40:14 Deleted Trojan program Backdoor.Win32.ZAccess.ang F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0043198.ini High
18.11.2011 19:40:40 Deleted Trojan program Rootkit.Win32.ZAccess.g F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0044197.sys High
18.11.2011 19:40:40 Deleted Trojan program Backdoor.Win32.ZAccess.ang F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0044198.ini High
18.11.2011 19:40:49 Deleted Trojan program Backdoor.Win32.ZAccess.ang F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0045198.ini High
18.11.2011 19:40:51 Deleted Trojan program Rootkit.Win32.ZAccess.g F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0045197.sys High
18.11.2011 19:40:51 Deleted Trojan program Rootkit.Win32.ZAccess.g F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0046197.sys High
18.11.2011 19:40:49 Deleted Trojan program Backdoor.Win32.ZAccess.ang F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0046198.ini High
18.11.2011 19:40:54 Deleted Trojan program Rootkit.Win32.ZAccess.g F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0046218.sys High
18.11.2011 19:40:52 Deleted Trojan program Backdoor.Win32.ZAccess.ang F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0046219.ini High
18.11.2011 19:40:59 Deleted Trojan program Rootkit.Win32.ZAccess.g F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0046235.sys High
18.11.2011 19:40:57 Deleted Trojan program Backdoor.Win32.ZAccess.ang F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP24\A0046236.ini High
18.11.2011 19:41:01 Deleted Trojan program Backdoor.Win32.ZAccess.ang F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP25\A0046311.ini High
18.11.2011 19:41:05 Deleted Trojan program Trojan.Win32.Scar.ejfa F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP25\A0046321.exe High
18.11.2011 19:41:05 Deleted Trojan program Trojan.Win32.Scar.ejfa F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP25\A0046321.exe//UPX High
18.11.2011 19:41:11 Deleted Trojan program Trojan.Win32.Scar.fafu F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP25\A0046337.exe High
18.11.2011 19:41:22 Deleted Trojan program Trojan.Win32.Swisyn.bqmb F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP25\A0046344.exe High
18.11.2011 19:41:22 Deleted Trojan program Trojan.Win32.Swisyn.bqmb F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP25\A0046344.exe//UPX High
18.11.2011 19:41:33 Deleted Trojan program Trojan.Win32.Miner.v F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP25\A0046346.exe High
18.11.2011 19:41:29 Deleted Trojan program Trojan.Win32.AntiAV.oao F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP25\A0047739.exe High
18.11.2011 19:41:33 Deleted Trojan program Trojan.Win32.Miner.v F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP25\A0046346.exe//UPX High
18.11.2011 19:41:34 Deleted Trojan program Trojan.Win32.Swisyn.cacw F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP25\A0046347.exe High
18.11.2011 19:41:34 Deleted Trojan program Trojan.Win32.Swisyn.cacw F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP25\A0046347.exe//UPX High
18.11.2011 19:42:26 Deleted Trojan program Trojan.Win32.Miner.k F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP25\A0046356.exe High
18.11.2011 19:42:26 Deleted Trojan program Trojan.Win32.Miner.k F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP25\A0046356.exe//UPX High
18.11.2011 19:55:19 Deleted Trojan program Trojan.Win32.AntiAV.oao F:\WINDOWS\update.tray-3-0-lnk\svchost.exe High
Status: Quarantined (events: 13)
18.11.2011 19:19:19 Quarantined virus HEUR:Trojan.Win32.Generic F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\systemup.exe.vir High
18.11.2011 19:19:19 Quarantined virus HEUR:Trojan.Win32.Generic F:\Documents and Settings\Hráč\Plocha\RK_Quarantine\systemup.exe.vir//UPX High
18.11.2011 19:37:45 Quarantined virus HEUR:Trojan.Win32.Generic F:\Qoobox\Quarantine\F\Documents and Settings\LocalService\Local Settings\Data aplikací\9c099e0a\X.vir High
18.11.2011 19:37:57 Quarantined virus HEUR:Trojan.Win32.Generic F:\Qoobox\Quarantine\F\WINDOWS\systemup.exe.vir High
18.11.2011 19:37:57 Quarantined virus HEUR:Trojan.Win32.Generic F:\Qoobox\Quarantine\F\WINDOWS\systemup.exe.vir//UPX High
18.11.2011 19:38:05 Quarantined virus HEUR:Trojan.Win32.Generic F:\Qoobox\Quarantine\F\WINDOWS\update.3\svchost.exe.vir High
18.11.2011 19:38:05 Quarantined virus HEUR:Trojan.Win32.Generic F:\Qoobox\Quarantine\F\WINDOWS\update.3\svchost.exe.vir//UPX High
18.11.2011 19:39:15 Quarantined virus HEUR:Trojan.Win32.Generic F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP23\A0031982.exe High
18.11.2011 19:39:15 Quarantined virus HEUR:Trojan.Win32.Generic F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP23\A0031982.exe//UPX High
18.11.2011 19:41:15 Quarantined virus HEUR:Trojan.Win32.Generic F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP25\A0046341.exe High
18.11.2011 19:41:15 Quarantined virus HEUR:Trojan.Win32.Generic F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP25\A0046341.exe//UPX High
18.11.2011 19:41:29 Quarantined virus HEUR:Trojan.Win32.Generic F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP25\A0046345.exe High
18.11.2011 19:41:29 Quarantined virus HEUR:Trojan.Win32.Generic F:\System Volume Information\_restore{C32BA531-74FC-46F2-9A7E-AB252746B3B1}\RP25\A0046345.exe//UPX High