Tak Norman po nějaké době vyhodil tento log:
Norman SinowalMBR Cleaner
Copyright © 1990 - 2008, Norman ASA. Built 2008/05/13 16:21:18
Norman Scanner Engine Version: 5.92.04
Nvcbin.def Version: 5.92.00, Date: 2008/05/13 16:21:18, Variants: 0
Running pre-scan cleanup routine:
Operating System: Microsoft Windows XP Professional 5.1.2600 Service Pack 3
Logged on user: LUKAS-NEW\Lukas a Misa
Scan started: 11/07/2008 23:13:19
Scanning bootsectors...
No SinowalMBR hooks found
Number of sectors found: 4
Number of sectors scanned: 4
Number of sectors not scanned: 0
Number of infections found: 0
Number of infections removed: 0
Total scanning time: 0s 250ms
Scanning running processes and process memory...
Number of processes/threads found: 1983
Number of processes/threads scanned: 1983
Number of processes/threads not scanned: 0
Number of infected processes/threads terminated: 0
Total scanning time: 11s
Scanning file system...
Scanning: C:\*.*
Scanning: E:\*.*
Scanning: F:\*.*
Scanning: G:\*.*
Scanning: H:\*.*
Scanning: C:\Documents and Settings\All Users\Dokumenty\*.*
Scanning: C:\Documents and Settings\Lukas a Misa\Dokumenty\*.*
Scanning: C:\Documents and Settings\Lukas a Misa\Plocha\Svatba-výběr pro tisk\*.*
Scanning: C:\Documents and Settings\Lukas a Misa\Plocha\vir\*.*
Running post-scan cleanup routine:
Number of files found: 292117
Number of archives unpacked: 1802
Number of files scanned: 292076
Number of files not scanned: 41
Number of files skipped due to exclude list: 0
Number of infected files found: 0
Number of infected files repaired/deleted: 0
Number of infections removed: 0
Total scanning time: 1h 16m 35s
Poté jsem pustil MBR z příkazového řádku:
Stealth MBR rootkit detector 0.2.4 by Gmer,
http://www.gmer.net
device: opened successfully
user: MBR read successfully
kernel: MBR read successfully
user & kernel MBR OK
malicious code @ sector 0x25429800 size 0x2c3 !
copy of MBR has been found in sector 62 !
Pak pro jistotu ještě MWAV na H:
12 VII 2008 00:33:29 - ***** Test dokončen *****
12 VII 2008 00:33:29 - Testovaných objektů: 978
12 VII 2008 00:33:29 - Kritických objektů: 0
12 VII 2008 00:33:29 - Celkem vyléčených objektů: 0
12 VII 2008 00:33:29 - Celkem přejmenováno: 0
12 VII 2008 00:33:29 - Smazaných objektů: 0
12 VII 2008 00:33:29 - Celkem chyb: 0
12 VII 2008 00:33:29 - Uplynulý čas: 00:01:24
12 VII 2008 00:33:29 - Datum vydání databáze: 05 Jul 2008
12 VII 2008 00:33:29 - Verze virové databáze: 915351
12 VII 2008 00:33:29 - Test je dokončen
Nyní nechám běžet CUREIT a uvidíme ráno.