VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

prosím o zkouknutí

https://forum.viry.cz:443/viewtopic.php?t=102194

Stránka 2 z 2

Re: prosím o zkouknutí

Napsal: 26 čer 2010 14:45
od Saixx
taky mi to není nějak xtra po chuti... :(

Re: prosím o zkouknutí

Napsal: 26 čer 2010 14:49
od Saixx
no nebylo tam přímo to co jste psal, ale něco tu mám(je to z ntbtlog)


Microsoft (R) Windows (R) Version 6.1 (Build 7600)
6 26 2010 15:46:57.375
Loaded driver \SystemRoot\system32\ntoskrnl.exe
Loaded driver \SystemRoot\system32\hal.dll
Loaded driver \SystemRoot\system32\kdcom.dll
Loaded driver \SystemRoot\system32\mcupdate_AuthenticAMD.dll
Loaded driver \SystemRoot\system32\PSHED.dll
Loaded driver \SystemRoot\system32\CLFS.SYS
Loaded driver \SystemRoot\system32\CI.dll
Loaded driver \SystemRoot\system32\drivers\Wdf01000.sys
Loaded driver \SystemRoot\system32\drivers\WDFLDR.SYS
Loaded driver \SystemRoot\System32\Drivers\sptd.sys
Loaded driver \SystemRoot\System32\Drivers\WMILIB.SYS
Loaded driver \SystemRoot\System32\Drivers\SCSIPORT.SYS
Loaded driver \SystemRoot\system32\DRIVERS\ACPI.sys
Loaded driver \SystemRoot\system32\DRIVERS\msisadrv.sys
Loaded driver \SystemRoot\system32\DRIVERS\vdrvroot.sys
Loaded driver \SystemRoot\system32\DRIVERS\pci.sys
Loaded driver \SystemRoot\System32\drivers\partmgr.sys
Loaded driver \SystemRoot\system32\DRIVERS\volmgr.sys
Loaded driver \SystemRoot\System32\drivers\volmgrx.sys
Loaded driver \SystemRoot\system32\DRIVERS\pciide.sys
Loaded driver \SystemRoot\system32\DRIVERS\PCIIDEX.SYS
Loaded driver \SystemRoot\System32\drivers\mountmgr.sys
Loaded driver \SystemRoot\system32\DRIVERS\atapi.sys
Loaded driver \SystemRoot\system32\DRIVERS\ataport.SYS
Loaded driver \SystemRoot\system32\DRIVERS\nvstor.sys
Loaded driver \SystemRoot\system32\DRIVERS\storport.sys
Loaded driver \SystemRoot\system32\DRIVERS\SI3132.sys
Loaded driver \SystemRoot\system32\DRIVERS\nvstor64.sys
Loaded driver \SystemRoot\system32\DRIVERS\amdxata.sys
Loaded driver \SystemRoot\system32\drivers\fltmgr.sys
Loaded driver \SystemRoot\system32\drivers\fileinfo.sys
Loaded driver \SystemRoot\system32\DRIVERS\SiWinAcc.sys
Loaded driver \SystemRoot\System32\Drivers\Ntfs.sys
Loaded driver \SystemRoot\System32\Drivers\msrpc.sys
Loaded driver \SystemRoot\System32\Drivers\ksecdd.sys
Loaded driver \SystemRoot\System32\Drivers\cng.sys
Loaded driver \SystemRoot\System32\drivers\pcw.sys
Loaded driver \SystemRoot\System32\Drivers\Fs_Rec.sys
Loaded driver \SystemRoot\system32\drivers\ndis.sys
Loaded driver \SystemRoot\system32\drivers\NETIO.SYS
Loaded driver \SystemRoot\System32\Drivers\ksecpkg.sys
Loaded driver \SystemRoot\System32\drivers\tcpip.sys
Loaded driver \SystemRoot\System32\drivers\fwpkclnt.sys
Loaded driver \SystemRoot\system32\DRIVERS\vmstorfl.sys
Loaded driver \SystemRoot\system32\DRIVERS\volsnap.sys
Loaded driver \SystemRoot\System32\Drivers\spldr.sys
Loaded driver \SystemRoot\System32\drivers\rdyboost.sys
Loaded driver \SystemRoot\system32\DRIVERS\SiRemFil.sys
Loaded driver \SystemRoot\System32\Drivers\mup.sys
Loaded driver \SystemRoot\System32\drivers\hwpolicy.sys
Loaded driver \SystemRoot\System32\DRIVERS\fvevol.sys
Loaded driver \SystemRoot\system32\DRIVERS\disk.sys
Loaded driver \SystemRoot\system32\DRIVERS\CLASSPNP.SYS
Loaded driver \SystemRoot\system32\DRIVERS\cdrom.sys
Loaded driver \SystemRoot\system32\DRIVERS\MpFilter.sys
Loaded driver \SystemRoot\System32\Drivers\Null.SYS
Loaded driver \SystemRoot\System32\Drivers\Beep.SYS
Loaded driver \SystemRoot\system32\DRIVERS\ehdrv.sys
Loaded driver \SystemRoot\System32\drivers\vga.sys
Loaded driver \SystemRoot\System32\DRIVERS\RDPCDD.sys
Loaded driver \SystemRoot\system32\drivers\rdpencdd.sys
Loaded driver \SystemRoot\system32\drivers\rdprefmp.sys
Loaded driver \SystemRoot\System32\Drivers\Msfs.SYS
Loaded driver \SystemRoot\System32\Drivers\Npfs.SYS
Loaded driver \SystemRoot\system32\DRIVERS\tdx.sys
Loaded driver \SystemRoot\system32\drivers\afd.sys
Loaded driver \SystemRoot\System32\DRIVERS\netbt.sys
Loaded driver \SystemRoot\system32\DRIVERS\wfplwf.sys
Loaded driver \SystemRoot\system32\DRIVERS\pacer.sys
Loaded driver \SystemRoot\system32\DRIVERS\vwififlt.sys
Loaded driver \SystemRoot\system32\DRIVERS\netbios.sys
Loaded driver \SystemRoot\system32\DRIVERS\wanarp.sys
Loaded driver \SystemRoot\system32\DRIVERS\termdd.sys
Loaded driver \SystemRoot\system32\DRIVERS\rdbss.sys
Loaded driver \SystemRoot\system32\drivers\nsiproxy.sys
Loaded driver \SystemRoot\system32\DRIVERS\mssmbios.sys
Loaded driver \SystemRoot\System32\drivers\discache.sys
Loaded driver \SystemRoot\system32\drivers\csc.sys
Loaded driver \SystemRoot\System32\Drivers\dfsc.sys
Loaded driver \SystemRoot\system32\DRIVERS\blbdrive.sys
Loaded driver \SystemRoot\SysWow64\drivers\AsUpIO.sys
Loaded driver \SystemRoot\SysWow64\drivers\AsIO.sys
Loaded driver \SystemRoot\system32\DRIVERS\tunnel.sys
Loaded driver \SystemRoot\system32\DRIVERS\amdk8.sys
Loaded driver \SystemRoot\system32\DRIVERS\atikmdag.sys
Loaded driver \SystemRoot\System32\drivers\dxgkrnl.sys
Loaded driver \SystemRoot\system32\DRIVERS\atikmpag.sys
Loaded driver \SystemRoot\system32\DRIVERS\HDAudBus.sys
Loaded driver \SystemRoot\system32\DRIVERS\serial.sys
Loaded driver \SystemRoot\system32\DRIVERS\serenum.sys
Loaded driver \SystemRoot\system32\DRIVERS\parport.sys
Loaded driver \SystemRoot\system32\DRIVERS\i8042prt.sys
Loaded driver \SystemRoot\system32\DRIVERS\mouclass.sys
Loaded driver \SystemRoot\system32\DRIVERS\L8042Kbd.sys
Loaded driver \SystemRoot\system32\DRIVERS\kbdclass.sys
Loaded driver \SystemRoot\system32\DRIVERS\usbohci.sys
Loaded driver \SystemRoot\system32\DRIVERS\usbehci.sys
Loaded driver \SystemRoot\system32\DRIVERS\nvm62x64.sys
Loaded driver \SystemRoot\System32\Drivers\a1hn8z4g.SYS
Loaded driver \SystemRoot\system32\DRIVERS\ASACPI.sys
Loaded driver \SystemRoot\system32\DRIVERS\CompositeBus.sys
Loaded driver \SystemRoot\system32\DRIVERS\Epfwndis.sys
Loaded driver \SystemRoot\system32\DRIVERS\AgileVpn.sys
Loaded driver \SystemRoot\system32\DRIVERS\rasl2tp.sys
Loaded driver \SystemRoot\system32\DRIVERS\ndistapi.sys
Loaded driver \SystemRoot\system32\DRIVERS\ndiswan.sys
Loaded driver \SystemRoot\system32\DRIVERS\raspppoe.sys
Loaded driver \SystemRoot\system32\DRIVERS\raspptp.sys
Loaded driver \SystemRoot\system32\DRIVERS\rassstp.sys
Loaded driver \SystemRoot\system32\DRIVERS\rdpbus.sys
Loaded driver \SystemRoot\system32\DRIVERS\swenum.sys
Loaded driver \SystemRoot\system32\DRIVERS\umbus.sys
Loaded driver \SystemRoot\system32\DRIVERS\usbhub.sys
Loaded driver \SystemRoot\System32\Drivers\NDProxy.SYS
Did not load driver \SystemRoot\System32\Drivers\NDProxy.SYS
Did not load driver \SystemRoot\System32\Drivers\NDProxy.SYS
Did not load driver \SystemRoot\System32\Drivers\NDProxy.SYS
Did not load driver \SystemRoot\System32\Drivers\NDProxy.SYS
Loaded driver \SystemRoot\system32\drivers\AtiHdmi.sys
Loaded driver \SystemRoot\system32\drivers\ksthunk.sys
Loaded driver \SystemRoot\system32\drivers\HdAudio.sys
Loaded driver \SystemRoot\system32\DRIVERS\USBSTOR.SYS
Loaded driver \SystemRoot\system32\DRIVERS\rtl8187.sys
Loaded driver \SystemRoot\System32\drivers\vwifibus.sys
Loaded driver \SystemRoot\system32\DRIVERS\monitor.sys
Loaded driver \SystemRoot\system32\drivers\luafv.sys
Loaded driver \SystemRoot\system32\DRIVERS\eamon.sys
Did not load driver \SystemRoot\SysWow64\Drivers\eamonm.SYS
Loaded driver \SystemRoot\system32\drivers\WudfPf.sys
Loaded driver \SystemRoot\system32\DRIVERS\epfw.sys
Did not load driver \SystemRoot\system32\DRIVERS\MpFilter.sys
Loaded driver \SystemRoot\system32\DRIVERS\lltdio.sys
Loaded driver \SystemRoot\system32\DRIVERS\nwifi.sys
Loaded driver \SystemRoot\system32\DRIVERS\ndisuio.sys
Loaded driver \SystemRoot\system32\DRIVERS\rspndr.sys
Loaded driver \SystemRoot\system32\drivers\HTTP.sys
Loaded driver \SystemRoot\system32\DRIVERS\bowser.sys
Loaded driver \SystemRoot\System32\drivers\mpsdrv.sys
Loaded driver \SystemRoot\system32\DRIVERS\mrxsmb.sys
Loaded driver \SystemRoot\system32\DRIVERS\mrxsmb10.sys
Loaded driver \SystemRoot\system32\DRIVERS\mrxsmb20.sys
Loaded driver \SystemRoot\system32\DRIVERS\epfwwfp.sys
Loaded driver \SystemRoot\system32\drivers\peauth.sys
Loaded driver \SystemRoot\System32\Drivers\secdrv.SYS
Loaded driver \SystemRoot\System32\DRIVERS\srvnet.sys
Loaded driver \SystemRoot\System32\drivers\tcpipreg.sys
Loaded driver \SystemRoot\System32\DRIVERS\srv2.sys
Loaded driver \SystemRoot\System32\DRIVERS\srv.sys
Did not load driver \SystemRoot\System32\DRIVERS\srv.sys
Loaded driver \SystemRoot\system32\DRIVERS\WUDFRd.sys
Loaded driver \SystemRoot\system32\DRIVERS\MpNWMon.sys

Re: prosím o zkouknutí

Napsal: 27 čer 2010 17:19
od Saixx
tady je ten MBAM:


Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Verze databáze: 4246

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

27.6.2010 16:57:23
mbam-log-2010-06-27 (16-57-23).txt

Typ skenu: Rychlý sken
Skenované objekty: 124295
Uplynulý čas: 5 minuta(y), 11 sekunda(y)

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče registru: 1
Infikované hodnoty registru: 0
Infikované datové položky registru: 0
Infikované složky: 0
Infikované soubory: 0

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče registru:
HKEY_CURRENT_USER\SOFTWARE\EBUNWVLUMV (Trojan.FakeAlert) -> No action taken.

Infikované hodnoty registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)

a AVPTool:

Autoscan: completed 6 minutes ago (events: 21, objects: 462280, time: 01:20:16)
27.6.2010 16:52:03 Task started
27.6.2010 16:54:52 Detected: Trojan.Win32.DelFiles.mj C:\Users\SAIXX\Desktop\T-Cleaner.exe
27.6.2010 16:54:59 Deleted: Trojan.Win32.DelFiles.mj C:\Users\SAIXX\Desktop\T-Cleaner.exe
27.6.2010 16:54:59 Deleted: Trojan.Win32.DelFiles.mj C:\Users\SAIXX\Desktop\T-Cleaner.exe
27.6.2010 16:57:37 Detected: Exploit.Java.Agent.f C:\Documents and Settings\SAIXX\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\31\67ade0df-51abd716/Email.class
27.6.2010 16:57:37 Detected: Exploit.Java.Agent.ag C:\Documents and Settings\SAIXX\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\1e118a0-69b765ed/total/AServers.class
27.6.2010 16:57:38 Deleted: Exploit.Java.Agent.f C:\Documents and Settings\SAIXX\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\31\67ade0df-51abd716/Email.class
27.6.2010 16:57:38 Deleted: Exploit.Java.Agent.ag C:\Documents and Settings\SAIXX\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\1e118a0-69b765ed/total/AServers.class
27.6.2010 16:57:38 Detected: Exploit.Java.Agent.as C:\Documents and Settings\SAIXX\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\31\67ade0df-51abd716/ExecService.class
27.6.2010 16:57:38 Deleted: Exploit.Java.Agent.as C:\Documents and Settings\SAIXX\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\31\67ade0df-51abd716/ExecService.class
27.6.2010 16:57:39 Detected: Exploit.Java.Agent.ag C:\Documents and Settings\SAIXX\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\1e118a0-69b765ed/total/Server1.class
27.6.2010 16:57:39 Deleted: Exploit.Java.Agent.ag C:\Documents and Settings\SAIXX\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\1e118a0-69b765ed/total/Server1.class
27.6.2010 16:57:40 Detected: Exploit.Java.Agent.ag C:\Documents and Settings\SAIXX\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\1e118a0-69b765ed/total/Server2.class
27.6.2010 16:57:40 Deleted: Exploit.Java.Agent.ag C:\Documents and Settings\SAIXX\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\1e118a0-69b765ed/total/Server2.class
27.6.2010 17:25:51 Detected: Trojan.Win32.Swisyn.aaal D:\Downloads\Software\PGMS\Ashampoo\Ashampoo HDD control + keygen\Ashampoo HDD Control v1.xx KeyGen - ICWT\Ashampoo HDD Control v1.xx KeyGen.exe
27.6.2010 17:26:13 Deleted: Trojan.Win32.Swisyn.aaal D:\Downloads\Software\PGMS\Ashampoo\Ashampoo HDD control + keygen\Ashampoo HDD Control v1.xx KeyGen - ICWT\Ashampoo HDD Control v1.xx KeyGen.exe
27.6.2010 17:32:20 Detected: Type_Win32 D:\Downloads\Software\PGMS\Pinnacle Studio 14_CZ\cyg-pshd.iso/CYGiSO/keygen.exe/PE_Patch/ASProtect
27.6.2010 17:32:20 Untreated: Type_Win32 D:\Downloads\Software\PGMS\Pinnacle Studio 14_CZ\cyg-pshd.iso/CYGiSO/keygen.exe/PE_Patch/ASProtect Write not supported
27.6.2010 17:36:30 Detected: Trojan.Win32.Buzus.dlrm D:\Program Files (x86)\DVDFab 7\DVDFab.exe
27.6.2010 17:37:45 Deleted: Trojan.Win32.Buzus.dlrm D:\Program Files (x86)\DVDFab 7\DVDFab.exe
27.6.2010 18:12:19 Task completed

Re: prosím o zkouknutí

Napsal: 27 čer 2010 18:56
od Saixx
o.k.
toť vše? pokud ano díky moc
Všechny časy jsou v UTC+01:00
Stránka 2 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz