Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org
Verze databáze: 5640
Windows 5.1.2600 Service Pack 3
Internet Explorer 6.0.2900.5512
30.1.2011 20:39:26
mbam-log-2011-01-30 (20-39-26).txt
Typ kontroly: Úplný test (C:\|D:\|)
Testované objekty: 278620
Uplynulý čas: 19 minut, 39 sekund
Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 1
Infikované datové položky v registru: 2
Infikované složky: 0
Infikované soubory: 59
Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)
Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)
Infikované hodnoty v registru:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Terminal Server\Install\Software\Microsoft\Windows\CurrentVersion\Run\NVIDIA driver monitor (Malware.Trace) -> Value: NVIDIA driver monitor -> Quarantined and deleted successfully.
Infikované datové položky v registru:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Start_ShowHelp (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoSMHelp (PUM.Hijack.Help) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)
Infikované soubory:
c:\documents and settings\dasa.doma-d074ff335e\dokumenty\stažené soubory\facebook-pic000934519(2).exe (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\documents and settings\dasa.doma-d074ff335e\dokumenty\stažené soubory\facebook-pic000934519.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\documents and settings\dasa.doma-d074ff335e\Plocha\ostatní\removewga.exe (PUP.RemoveWGA) -> Not selected for removal.
c:\program files\trend micro\dasa.exe (PWS.Fignotok) -> Quarantined and deleted successfully.
c:\program files\trend micro\hijackthis.exe (PWS.Fignotok) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0571390c-c3d0-4100-9b6d-65e0c9d23b77}\RP314\A0174564.exe (PWS.Fignotok) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0571390c-c3d0-4100-9b6d-65e0c9d23b77}\RP314\A0174968.exe (PUP.RemoveWGA) -> Not selected for removal.
c:\system volume information\_restore{0571390c-c3d0-4100-9b6d-65e0c9d23b77}\RP314\A0175126.exe (PWS.Fignotok) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP8\A0003100.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP8\A0004081.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP8\A0004084.exe (Backdoor.RBot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP8\A0004122.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP8\A0004123.exe (Backdoor.RBot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP8\A0004129.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP8\A0004130.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP9\A0004254.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP9\A0004255.exe (Backdoor.RBot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP9\A0004278.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP9\A0004279.exe (Backdoor.RBot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP9\A0005299.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP9\A0006293.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP9\A0006294.exe (Backdoor.RBot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP9\A0007293.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP9\A0007295.exe (Backdoor.RBot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP9\A0008292.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP9\A0008294.exe (Backdoor.RBot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP9\A0004295.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP9\A0018300.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP9\A0009299.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP9\A0010299.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP9\A0011292.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP9\A0011294.exe (Backdoor.RBot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP9\A0012299.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP9\A0013294.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP9\A0013296.exe (Backdoor.RBot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP9\A0014292.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP9\A0014294.exe (Backdoor.RBot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP9\A0015292.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP9\A0015294.exe (Backdoor.RBot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP9\A0016295.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP9\A0016296.exe (Backdoor.RBot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP9\A0019300.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP9\A0021294.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP9\A0021296.exe (Backdoor.RBot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP9\A0021305.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP9\A0022294.exe (Backdoor.RBot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP9\A0023294.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP9\A0023297.exe (Backdoor.RBot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP9\A0024294.exe (Backdoor.RBot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{0857eada-94c8-4496-a7f0-834407685969}\RP9\A0025294.exe (Backdoor.RBot) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\spoolsvc.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\WINDOWS\Temp\sig1.tmp (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\WINDOWS\Temp\sig2.tmp (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\_OTM\movedfiles\01302011_172642\c_windows.0\nvsvc32.exe (Backdoor.Bot) -> Quarantined and deleted successfully.
d:\instalačky\clone cd 4.2.0.2\clonecd keygen.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully.
d:\instalačky\clone instal\setupclonecd3341.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully.
d:\system volume information\_restore{0571390c-c3d0-4100-9b6d-65e0c9d23b77}\RP314\A0176625.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully.
d:\system volume information\_restore{0571390c-c3d0-4100-9b6d-65e0c9d23b77}\RP314\A0176629.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully.
d:\vsechno\removewga.exe (PUP.RemoveWGA) -> Not selected for removal.
Jsi šikovná - je to správněpo ukončení -> Zobrazit výsledky -> zkontrolovat zda je vše označeno -> Odstranit označené
