|
| |||||||
| Registrovať | Site Spy | Zoznam členov | Darovanie | Hľadať | Dnešné príspevky | Označiť témy ako prečítané | Pravidlá fóra |
 |
 |
| | Thread Tools |
|
#1
4. apríla 2008, 10:57
| |||
| |||
| Pomalšie a pomalšie Po stiahnutí niektoré veci môjho počítačov sa čoraz pomalšie a pomalšie, s otravný spyware / malware pridať odprýskávání sa, že já dotírat zbaviť. Prosím pomôžte chlapi .. |
|
#2
4. apríla 2008, 11:02
| ||||||||||||
| ||||||||||||
| Pomalšie a pomalšie __________________ Môj systém: Hybr! D
|
|
#3
4. apríla 2008, 14:51
| |||
| |||
| Pomalšie a pomalšie ok to je prvý záznam. Beriem to som pokračovať? SuperAntiSpyware Scan Prihlásenie http://www.superantispyware.com Generated 04.04.2008 v 10:06 hodín Verzia aplikácie: 4.0.1154 Pravidlá databázy Core Version: 3431 Stopový Pravidlá databázy Version: 1423 Vyhľadávať typ: Kompletná Scan Celkom Scan Time: 01:41:45 Memory položiek testovány: 703 Memory ohrozenia odhalené: 1 Položky databázy Registry skenovaná: 5826 Registre ohrozenia odhalené: 43 Súbor položiek skenovaná: 289779 Súbor zistených ohrozenia: 158 Adware.Vundo Variant / tuzemského C: \ WINDOWS \ SYSTEM32 \ MLJJJ.DLL C: \ WINDOWS \ SYSTEM32 \ MLJJJ.DLL Trojan.WinFixer HKLM \ Software \ Classes \ CLSID \ (09888678-51D6-42FC-9437-CBBFDA0B86EA) HKCR \ CLSID \ (09888678-51D6-42FC-9437-CBBFDA0B86EA) HKCR \ CLSID \ (09888678-51D6-42FC-9437-CBBFDA0B86EA) \ InprocServer32 HKCR \ CLSID \ (09888678-51D6-42FC-9437-CBBFDA0B86EA) \ InprocServer32 # ThreadingModel HKLM \ Software \ Classes \ CLSID \ (6800D574-4F0F-80D6-B6C9-E590AF2F999B) HKCR \ CLSID \ (6800D574-4F0F-80D6-B6C9-E590AF2F999B) HKCR \ CLSID \ (6800D574-4F0F-80D6-B6C9-E590AF2F999B) \ InprocServer32 HKCR \ CLSID \ (6800D574-4F0F-80D6-B6C9-E590AF2F999B) \ InprocServer32 # ThreadingModel C: \ WINDOWS \ SYSTEM32 \ JKKLL.DLL HKLM \ Software \ Microsoft \ Windows \ CurrentVersion \ Exp lorer \ Browser Helper Objects \ (09888678-51D6-42FC-9437-CBBFDA0B86EA) Adware.Vundo Variant HKLM \ Software \ Classes \ CLSID \ (3FECA576-7AD2-4E11-A6AD-6B59D4FB5DB9) HKCR \ CLSID \ (3FECA576-7AD2-4E11-A6AD-6B59D4FB5DB9) HKCR \ CLSID \ (3FECA576-7AD2-4E11-A6AD-6B59D4FB5DB9) \ InprocServer32 HKCR \ CLSID \ (3FECA576-7AD2-4E11-A6AD-6B59D4FB5DB9) \ InprocServer32 # ThreadingModel C: \ WINDOWS \ SYSTEM32 \ TUVSQPQ.DLL HKLM \ Software \ Classes \ CLSID \ (D85530E8-D39D-49D0-9F36-300D594556D2) HKCR \ CLSID \ (D85530E8-D39D-49D0-9F36-300D594556D2) HKCR \ CLSID \ (D85530E8-D39D-49D0-9F36-300D594556D2) \ InprocServer32 HKCR \ CLSID \ (D85530E8-D39D-49D0-9F36-300D594556D2) \ InprocServer32 # ThreadingModel C: \ WINDOWS \ SYSTEM32 \ YAYWUVW.DLL HKLM \ Software \ Microsoft \ Windows \ CurrentVersion \ Exp lorer \ Browser Helper Objects \ (3FECA576-7AD2-4E11-A6AD-6B59D4FB5DB9) HKLM \ Software \ Microsoft \ Windows \ CurrentVersion \ Exp lorer \ ShellExecuteHooks # (D85530E8-D39D-49D0-9F36-300D594556D2) HKLM \ Software \ Microsoft \ Windows \ CurrentVersion \ Exp lorer \ ShellExecuteHooks # (3FECA576-7AD2-4E11-A6AD-6B59D4FB5DB9) HKCR \ CLSID \ (3FECA576-7AD2-4E11-A6AD-6B59D4FB5DB9) HKCR \ CLSID \ (D85530E8-D39D-49D0-9F36-300D594556D2) Unclassified.Unknown pôvodu HKLM \ Software \ Classes \ CLSID \ (F4F10C1D-87C7-404A-B4B3-000000000000) HKCR \ CLSID \ (F4F10C1D-87C7-404A-B4B3-000000000000) HKCR \ CLSID \ (F4F10C1D-87C7-404A-B4B3-000000000000) HKCR \ CLSID \ (F4F10C1D-87C7-404A-B4B3-000000000000) \ InprocServer32 HKCR \ CLSID \ (F4F10C1D-87C7-404A-B4B3-000000000000) \ InprocServer32 # ThreadingModel HKCR \ CLSID \ (F4F10C1D-87C7-404A-B4B3-000000000000) \ ProgID HKCR \ CLSID \ (F4F10C1D-87C7-404A-B4B3-000000000000) \ Programovateľný HKCR \ CLSID \ (F4F10C1D-87C7-404A-B4B3-000000000000) \ TypeLib HKCR \ CLSID \ (F4F10C1D-87C7-404A-B4B3-000000000000) \ VersionIndependentProgID C: \ PROGRA ~ 1 \ DAP \ SBSEARCH.DLL HKU \ S-1-5-21-73586283-1326574676-839522115-1004 \ Software \ Microsoft \ Internet Explorer \ URLSearchHooks # (F4F10C1D-87C7-404A-B4B3-000000000000) HKCR \ SearchHook.SrchHook.1 HKCR \ SearchHook.SrchHook HKCR \ TypeLib \ (95EFB171-F3DF-4BEC-9EF7-829A800203E6) HKCR \ TypeLib \ (95EFB171-F3DF-4BEC-9EF7-829A800203E6) \ 1,0 HKCR \ TypeLib \ (95EFB171-F3DF-4BEC-9EF7-829A800203E6) \ 1.0 \ 0 HKCR \ TypeLib \ (95EFB171-F3DF-4BEC-9EF7-829A800203E6) \ 1.0 \ 0 \ win32 HKCR \ TypeLib \ (95EFB171-F3DF-4BEC-9EF7-829A800203E6) \ 1.0 \ VLAJKY HKCR \ TypeLib \ (95EFB171-F3DF-4BEC-9EF7-829A800203E6) \ 1.0 \ HELPDIR Adware.Tracking Cookie C: \ Documents and Settings \ Danny \ Cookies \ @ Danny slúžiace sys-[1]. Txt C: \ Documents and Settings \ Danny \ Cookies \ @ Danny tribalfusion [1]. Txt C: \ Documents and Settings \ Danny \ Cookies \ @ Danny DoubleClick [1]. Txt C: \ Documents and Settings \ Danny \ Cookies \ danny@bs.serving-sys [1]. Txt C: \ Documents and Settings \ Danny \ Cookies \ danny@bs.serving-sys [2]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz@ad.yieldmanager [2]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz@ad.zanox [1]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz @ adnetserver [1]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz@ads.alpharooms [2]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz@ads1.alpharooms [2]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz@ads2.alpharooms [1]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz@ads3.alpharooms [1]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz@ads4.alpharooms [1]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz @ adultfriendfinder [2]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz @ gostats [2]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz @ hornymatches [2]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz @ indexstats [1]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz @ indexstats [3]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz @ linksynergy [1]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz@media2.mediafileshost [2]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz @ statcounter [1]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz@statse.webtrendslive [2]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz@tracking.summitmedia.co [1]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz@webstats.wthosting.co [2]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz@www.admedia365 [2]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz@www.admedia365 [3]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz@www.hxtrack [2]. Txt H: \ Documents and Settings \ Rozzie \ Cookies \ rozzie @ indexstats [2]. Txt H: \ Documents and Settings \ Rozzie \ Cookies \ rozzie@pc-finder.co [2]. Txt H: \ Documents and Settings \ Rozzie \ Cookies \ rozzie@www.pc-finder.co [2]. Txt H: \ Novšie Docs & Súpravy \ Rozzie \ Cookies \ rozzie @ indexstats [2]. Txt H: \ Novšie Docs & Súpravy \ Rozzie \ Cookies \ rozzie@pc-finder.co [2]. Txt H: \ Novšie Docs & Súpravy \ Rozzie \ Cookies \ rozzie@www.pc-finder.co [2]. Txt H: \ Rozzie \ Cookies \ rozzie @ indexstats [2]. Txt H: \ Rozzie \ Cookies \ rozzie@pc-finder.co [2]. Txt H: \ Rozzie \ Cookies \ rozzie@www.pc-finder.co [2]. Txt Trojan.Unknown pôvodu C: \ WINDOWS \ system32 \ nGpxx01 HKLM \ Software \ xpre HKLM \ Software \ xpre # execount Adware.VXGame-Stopový HKU \ S-1-5-21-73586283-1326574676-839522115-1005 \ Software \ kernelexe Adware.Vundo Variant / Rel C: \ WINDOWS \ SYSTEM32 \ ACCDD.INI C: \ WINDOWS \ SYSTEM32 \ ACCDD.INI2 C: \ WINDOWS \ SYSTEM32 \ ILKKJ.INI C: \ WINDOWS \ SYSTEM32 \ ILKKJ.INI2 C: \ WINDOWS \ SYSTEM32 \ JJJLM.INI C: \ WINDOWS \ SYSTEM32 \ JJJLM.INI2 C: \ WINDOWS \ SYSTEM32 \ LLKKJ.INI C: \ WINDOWS \ SYSTEM32 \ LLKKJ.INI2 C: \ WINDOWS \ SYSTEM32 \ LNNMP.INI2 C: \ WINDOWS \ SYSTEM32 \ MCRH.TMP C: \ WINDOWS \ SYSTEM32 \ RRQSS.INI C: \ WINDOWS \ SYSTEM32 \ VVVWA.INI2 Adware.Vundo-Variant C: \ WINDOWS \ SYSTEM32 \ DDCCA.DLL C: \ WINDOWS \ SYSTEM32 \ SSQRR.DLL Trace.Known hrozby Zdroje C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ index [1]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ WTAN0PYF \ dno [2]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ WTAN0PYF \ i53b_t1 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 4P6RS5MF \ CAXOO75T.htm C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ WTAN0PYF \ xrest [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ ajax [1]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CTY381ER \ verx [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ WTAN0PYF \ i701_brd-top-1 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ WTAN0PYF \ manažérov [1]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ WTAN0PYF \ errorhandler [2]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CTY381ER \ i701_line2 [1]. Jpg C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ i701_boton1 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ WTAN0PYF \ errorhandler [1]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ WTAN0PYF \ niz [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 4P6RS5MF \ errorhandler [1]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CTY381ER \ i53b_btn-funkcií [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ i701_cor-left-1 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CTY381ER \ i53b_icon3 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 4P6RS5MF \ crypt [1]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 4P6RS5MF \ okno [1]. Js C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ čistý [1]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ i53b_bg1 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ štatistiky [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ top [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ SDWBGNOV \ main_02 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ CASL6F4X.htm C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ i53b_line2 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 4P6RS5MF \ i701_cor-right-1 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ AHGZAXI5 \ odporučiť [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ i53b_icon5 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ štýlov [5]. Css C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ ZLGK0BFB \ off_2 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 4P6RS5MF \ i701_bg2 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ pokroku [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CTY381ER \ i53b_btn-prehľad [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CTY381ER \ index [5]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CTY381ER \ štatistiky [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ i701_bg3 [1]. Jpg C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 8NKJEV4R \ bottom_r_2 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 4P6RS5MF \ naliehavé [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ errorhandler [1]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 4P6RS5MF \ AC_RunActiveContent [1]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 4P6RS5MF \ stredné [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ QX8BMXM5 \ štýly [2]. Css C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 4P6RS5MF \ i53b_boton4 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ WTAN0PYF \ i53b_btn-kúpa [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ spacer [4]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 4P6RS5MF \ ajax [1]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ G92ZKB2T \ značka [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CX8VSB4B \ bottom_r [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CTY381ER \ crypt [1]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ LO76ZR17 \ errsnd [1]. SWF C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CX8VSB4B \ bottom_l [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CTY381ER \ i53b_brd-top-1 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CTY381ER \ crypt [2]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ AHGZAXI5 \ secpan [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ i53b_btn-home [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CTY381ER \ CAUJABA1.htm C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ WTAN0PYF \ AC_ActiveX [1]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 4P6RS5MF \ i53b_line3 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 4P6RS5MF \ checa [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ WTAN0PYF \ i53b_icon1 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ WTAN0PYF \ ajax [1]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 4P6RS5MF \ i53b_btn-download [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ ZLGK0BFB \ x [2]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CTY381ER \ CA3MKJZH.htm C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ WTAN0PYF \ i701_BG [1]. Jpg C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ i701_line1 [1]. Jpg C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ i701_brd-bot-1 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ WTAN0PYF \ i701_pc [1]. Jpg C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 4P6RS5MF \ i53b_boton2 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ i53b_brd-bot-1 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ WTAN0PYF \ i701_bg4 [1]. Jpg C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 4P6RS5MF \ manažérov [1]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 4P6RS5MF \ i53b_btn-aktualizácií [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ manažérov [1]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ UR2NQ1UR \ záznam [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ WTAN0PYF \ flash [1]. Js C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 4P6RS5MF \ i701_spacer [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ AL6HK9M7 \ main_06 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ head_r_back [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ LO76ZR17 \ štít [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ WTAN0PYF \ i701_line3 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CTY381ER \ i701_boton2 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CTY381ER \ flash_detect [1]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ M1Q5EV4X \ hrať [1]. Js C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ UR2NQ1UR \ main_10 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ M1Q5EV4X \ main_05 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ QX8BMXM5 \ kríž [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ G92ZKB2T \ main_07 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ EJ23EDUF \ closebutton [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 8NKJEV4R \ main_03 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CTY381ER \ ban_2 [1]. SWF C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CTY381ER \ logo2 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ WTAN0PYF \ data [1]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ LO76ZR17 \ off_back [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ AL6HK9M7 \ download [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ M1Q5EV4X \ main_04 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ popup [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CTY381ER \ left_3 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ QX8BMXM5 \ bottom_l_2 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ Z81HJ8WK \ right_2 [1]. Gif |
|
#4
4. apríla 2008, 19:20
| |||
| |||
| Pomalšie a pomalšie Áno, prosím, pokračujte so zvyškom krokov. Každý krok hľadá a opravuje rôzne hrozby.
__________________  |
|
#5
5. apríla 2008, 00:13
| |||
| |||
| Pomalšie a pomalšie OK Heres druhý log .. Malwarebytes' Anti-Malware 1.10 Databáza verzia: 592 Vyhľadávať typ: Úplné Scan (A: \ | C: \ | D: \ | E: \ | H: \ | I: \ | J: \ |) Objekty skenovanej: 336027 Doba letu: 1 hodina (s), 8 minút (y) 1 sekúnd (y) Pamäťové procesy Infikovaná: 5 Infikované pamäťové moduly: 0 Registry Keys Infikovaná: 10 Infikované hodnoty databázy Registry: 7 Infikované položky dat registru: 0 Infikované zložky: 0 Infikované súbory: 11 Infikované pamäťové procesy: C: \ WINDOWS \ system32 \ drivers \ Ctfmon.exe (Trojan.Agent) -> Nevyložené procesom úspešne. C: \ WINDOWS \ system32 \ drivers \ Ctfmon.exe (Trojan.Agent) -> Nevyložené procesom úspešne. C: \ Documents and Settings \ Danny \ Local Settings \ Data aplikací \ spool.exe (Trojan.Agent) -> Nevyložené procesom úspešne. C: \ Documents and Settings \ Danny \ Local Settings \ Data aplikací \ spool.exe (Trojan.Agent) -> Nevyložené procesom úspešne. C: \ Documents and Settings \ Danny \ Local Settings \ Data aplikací \ spool.exe (Trojan.Agent) -> Nevyložené procesom úspešne. Infikované pamäťové moduly: (Žiadne položky zistený škodlivý) Infikované kľúče databázy Registry: HKEY_LOCAL_MACHINE \ SYSTEM \ ControlSet001 \ Services \ s chedule (Trojan.Agent) -> karanténe a úspešne vymazaná. HKEY_LOCAL_MACHINE \ SYSTEM \ ControlSet002 \ Services \ s chedule (Trojan.Agent) -> karanténe a úspešne vymazaná. HKEY_LOCAL_MACHINE \ SYSTEM \ CurrentControlSet \ Servic es \ rozvrh (Trojan.Agent) -> karanténe a úspešne vymazaná. HKEY_CURRENT_USER \ Software \ Microsoft \ affri (Malware.Trace) -> karanténe a úspešne vymazaná. HKEY_CURRENT_USER \ Software \ Microsoft \ affltid (Malware.Trace) -> karanténe a úspešne vymazaná. HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ affltid (Malware.Trace) -> karanténe a úspešne vymazaná. HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ affri (Malware.Trace) -> karanténe a úspešne vymazaná. HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ MS Juan (Malware.Trace) -> karanténe a úspešne vymazaná. HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ FCOVM (Trojan.Vundo) -> karanténe a úspešne vymazaná. HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ RemoveRP (Trojan.Vundo) -> karanténe a úspešne vymazaná. Infikované hodnoty databázy Registry: HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ Curr entVersion \ Run \ BMafb2445c (Trojan.Agent) -> karanténe a úspešne vymazaná. HKEY_CURRENT_USER \ SOFTWARE \ Microsoft \ Windows \ Curr ntVersion \ Run \ ntuser (Trojan.Agent) -> karanténe a úspešne vymazaná. HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ Curr entVersion \ Run \ ntuser (Trojan.Agent) -> karanténe a úspešne vymazaná. HKEY_USERS \. DEFAULT \ SOFTWARE \ Microsoft \ Windows \ Cur rentVersion \ Run \ ntuser (Trojan.Agent) -> karanténe a úspešne vymazaná. HKEY_USERS \. DEFAULT \ SOFTWARE \ Microsoft \ Windows \ Cur rentVersion \ Run \ autoload (Trojan.Agent) -> karanténe a úspešne vymazaná. HKEY_CURRENT_USER \ SOFTWARE \ Microsoft \ Windows \ Curr ntVersion \ Run \ autoload (Trojan.Agent) -> karanténe a úspešne vymazaná. HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ Curr entVersion \ Run \ autoload (Trojan.Agent) -> karanténe a úspešne vymazaná. Infikované položky údajov databázy Registry: (Žiadne položky zistený škodlivý) Infikované zložky: (Žiadne položky zistený škodlivý) Infikované súbory: C: \ Documents and Settings \ LocalService \ Local Settings \ Temporary Internet Files \ Content.IE5 \ GHIJKLMN \ kolesách [1]. Jpg (Trojan.Madcode) -> karanténe a úspešne vymazaná. C: \ System Volume Information \ _restore (B4EDD13F-A6F1-41A1-814E-E5C94DDA45B5) \ RP8 \ A0002994.exe (Trojan.Downloader) -> karanténe a úspešne vymazaná. C: \ WINDOWS \ system32 \ iupdate.exe (Trojan.Madcode) -> karanténe a úspešne vymazaná. C: \ WINDOWS \ system32 \ kchkioor.dll (Trojan.Agent) -> Vymaza o znovuzrodení. C: \ WINDOWS \ system32 \ drivers \ Ctfmon.exe (Trojan.Agent) -> karanténe a úspešne vymazaná. C: \ WINDOWS \ system32 \ pac.txt (Malware.Trace) -> karanténe a úspešne vymazaná. C: \ WINDOWS \ system32 \ drivers \ spools.exe (Trojan.Agent) -> karanténe a úspešne vymazaná. C: \ Documents and Settings \ Danny \ cftmon.exe (Trojan.Agent) -> karanténe a úspešne vymazaná. C: \ Documents and Settings \ Rozi \ Local Settings \ Data aplikací \ spool.exe (Trojan.Agent) -> karanténe a úspešne vymazaná. C: \ Documents and Settings \ LocalService \ Local Settings \ Data aplikací \ spool.exe (Trojan.Agent) -> karanténe a úspešne vymazaná. C: \ Documents and Settings \ Danny \ Local Settings \ Data aplikací \ spool.exe (Trojan.Agent) -> karanténe a úspešne vymazaná. |
|
#6
5. apríla 2008, 00:51
| |||
| |||
| Pomalšie a pomalšie Oh OK I didnt realizovať som sa po nich všetci spoločne. Ospravedlňujeme sa chlapi ... Tu sú: SuperAntiSpyware Scan Prihlásenie http://www.superantispyware.com Generated 04.04.2008 v 10:06 hodín Verzia aplikácie: 4.0.1154 Pravidlá databázy Core Version: 3431 Stopový Pravidlá databázy Version: 1423 Vyhľadávať typ: Kompletná Scan Celkom Scan Time: 01:41:45 Memory položiek testovány: 703 Memory ohrozenia odhalené: 1 Položky databázy Registry skenovaná: 5826 Registre ohrozenia odhalené: 43 Súbor položiek skenovaná: 289779 Súbor zistených ohrozenia: 158 Adware.Vundo Variant / tuzemského C: \ WINDOWS \ SYSTEM32 \ MLJJJ.DLL C: \ WINDOWS \ SYSTEM32 \ MLJJJ.DLL Trojan.WinFixer HKLM \ Software \ Classes \ CLSID \ (09888678-51D6-42FC-9437-CBBFDA0B86EA) HKCR \ CLSID \ (09888678-51D6-42FC-9437-CBBFDA0B86EA) HKCR \ CLSID \ (09888678-51D6-42FC-9437-CBBFDA0B86EA) \ InprocServer32 HKCR \ CLSID \ (09888678-51D6-42FC-9437-CBBFDA0B86EA) \ InprocServer32 # ThreadingModel HKLM \ Software \ Classes \ CLSID \ (6800D574-4F0F-80D6-B6C9-E590AF2F999B) HKCR \ CLSID \ (6800D574-4F0F-80D6-B6C9-E590AF2F999B) HKCR \ CLSID \ (6800D574-4F0F-80D6-B6C9-E590AF2F999B) \ InprocServer32 HKCR \ CLSID \ (6800D574-4F0F-80D6-B6C9-E590AF2F999B) \ InprocServer32 # ThreadingModel C: \ WINDOWS \ SYSTEM32 \ JKKLL.DLL HKLM \ Software \ Microsoft \ Windows \ CurrentVersion \ Exp lorer \ Browser Helper Objects \ (09888678-51D6-42FC-9437-CBBFDA0B86EA) Adware.Vundo Variant HKLM \ Software \ Classes \ CLSID \ (3FECA576-7AD2-4E11-A6AD-6B59D4FB5DB9) HKCR \ CLSID \ (3FECA576-7AD2-4E11-A6AD-6B59D4FB5DB9) HKCR \ CLSID \ (3FECA576-7AD2-4E11-A6AD-6B59D4FB5DB9) \ InprocServer32 HKCR \ CLSID \ (3FECA576-7AD2-4E11-A6AD-6B59D4FB5DB9) \ InprocServer32 # ThreadingModel C: \ WINDOWS \ SYSTEM32 \ TUVSQPQ.DLL HKLM \ Software \ Classes \ CLSID \ (D85530E8-D39D-49D0-9F36-300D594556D2) HKCR \ CLSID \ (D85530E8-D39D-49D0-9F36-300D594556D2) HKCR \ CLSID \ (D85530E8-D39D-49D0-9F36-300D594556D2) \ InprocServer32 HKCR \ CLSID \ (D85530E8-D39D-49D0-9F36-300D594556D2) \ InprocServer32 # ThreadingModel C: \ WINDOWS \ SYSTEM32 \ YAYWUVW.DLL HKLM \ Software \ Microsoft \ Windows \ CurrentVersion \ Exp lorer \ Browser Helper Objects \ (3FECA576-7AD2-4E11-A6AD-6B59D4FB5DB9) HKLM \ Software \ Microsoft \ Windows \ CurrentVersion \ Exp lorer \ ShellExecuteHooks # (D85530E8-D39D-49D0-9F36-300D594556D2) HKLM \ Software \ Microsoft \ Windows \ CurrentVersion \ Exp lorer \ ShellExecuteHooks # (3FECA576-7AD2-4E11-A6AD-6B59D4FB5DB9) HKCR \ CLSID \ (3FECA576-7AD2-4E11-A6AD-6B59D4FB5DB9) HKCR \ CLSID \ (D85530E8-D39D-49D0-9F36-300D594556D2) Unclassified.Unknown pôvodu HKLM \ Software \ Classes \ CLSID \ (F4F10C1D-87C7-404A-B4B3-000000000000) HKCR \ CLSID \ (F4F10C1D-87C7-404A-B4B3-000000000000) HKCR \ CLSID \ (F4F10C1D-87C7-404A-B4B3-000000000000) HKCR \ CLSID \ (F4F10C1D-87C7-404A-B4B3-000000000000) \ InprocServer32 HKCR \ CLSID \ (F4F10C1D-87C7-404A-B4B3-000000000000) \ InprocServer32 # ThreadingModel HKCR \ CLSID \ (F4F10C1D-87C7-404A-B4B3-000000000000) \ ProgID HKCR \ CLSID \ (F4F10C1D-87C7-404A-B4B3-000000000000) \ Programovateľný HKCR \ CLSID \ (F4F10C1D-87C7-404A-B4B3-000000000000) \ TypeLib HKCR \ CLSID \ (F4F10C1D-87C7-404A-B4B3-000000000000) \ VersionIndependentProgID C: \ PROGRA ~ 1 \ DAP \ SBSEARCH.DLL HKU \ S-1-5-21-73586283-1326574676-839522115-1004 \ Software \ Microsoft \ Internet Explorer \ URLSearchHooks # (F4F10C1D-87C7-404A-B4B3-000000000000) HKCR \ SearchHook.SrchHook.1 HKCR \ SearchHook.SrchHook HKCR \ TypeLib \ (95EFB171-F3DF-4BEC-9EF7-829A800203E6) HKCR \ TypeLib \ (95EFB171-F3DF-4BEC-9EF7-829A800203E6) \ 1,0 HKCR \ TypeLib \ (95EFB171-F3DF-4BEC-9EF7-829A800203E6) \ 1.0 \ 0 HKCR \ TypeLib \ (95EFB171-F3DF-4BEC-9EF7-829A800203E6) \ 1.0 \ 0 \ win32 HKCR \ TypeLib \ (95EFB171-F3DF-4BEC-9EF7-829A800203E6) \ 1.0 \ VLAJKY HKCR \ TypeLib \ (95EFB171-F3DF-4BEC-9EF7-829A800203E6) \ 1.0 \ HELPDIR Adware.Tracking Cookie C: \ Documents and Settings \ Danny \ Cookies \ @ Danny slúžiace sys-[1]. Txt C: \ Documents and Settings \ Danny \ Cookies \ @ Danny tribalfusion [1]. Txt C: \ Documents and Settings \ Danny \ Cookies \ @ Danny DoubleClick [1]. Txt C: \ Documents and Settings \ Danny \ Cookies \ danny@bs.serving-sys [1]. Txt C: \ Documents and Settings \ Danny \ Cookies \ danny@bs.serving-sys [2]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz@ad.yieldmanager [2]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz@ad.zanox [1]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz @ adnetserver [1]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz@ads.alpharooms [2]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz@ads1.alpharooms [2]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz@ads2.alpharooms [1]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz@ads3.alpharooms [1]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz@ads4.alpharooms [1]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz @ adultfriendfinder [2]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz @ gostats [2]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz @ hornymatches [2]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz @ indexstats [1]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz @ indexstats [3]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz @ linksynergy [1]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz@media2.mediafileshost [2]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz @ statcounter [1]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz@statse.webtrendslive [2]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz@tracking.summitmedia.co [1]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz@webstats.wthosting.co [2]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz@www.admedia365 [2]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz@www.admedia365 [3]. Txt C: \ Documents and Settings \ Rozi \ Cookies \ roz@www.hxtrack [2]. Txt H: \ Documents and Settings \ Rozzie \ Cookies \ rozzie @ indexstats [2]. Txt H: \ Documents and Settings \ Rozzie \ Cookies \ rozzie@pc-finder.co [2]. Txt H: \ Documents and Settings \ Rozzie \ Cookies \ rozzie@www.pc-finder.co [2]. Txt H: \ Novšie Docs & Súpravy \ Rozzie \ Cookies \ rozzie @ indexstats [2]. Txt H: \ Novšie Docs & Súpravy \ Rozzie \ Cookies \ rozzie@pc-finder.co [2]. Txt H: \ Novšie Docs & Súpravy \ Rozzie \ Cookies \ rozzie@www.pc-finder.co [2]. Txt H: \ Rozzie \ Cookies \ rozzie @ indexstats [2]. Txt H: \ Rozzie \ Cookies \ rozzie@pc-finder.co [2]. Txt H: \ Rozzie \ Cookies \ rozzie@www.pc-finder.co [2]. Txt Trojan.Unknown pôvodu C: \ WINDOWS \ system32 \ nGpxx01 HKLM \ Software \ xpre HKLM \ Software \ xpre # execount Adware.VXGame-Stopový HKU \ S-1-5-21-73586283-1326574676-839522115-1005 \ Software \ kernelexe Adware.Vundo Variant / Rel C: \ WINDOWS \ SYSTEM32 \ ACCDD.INI C: \ WINDOWS \ SYSTEM32 \ ACCDD.INI2 C: \ WINDOWS \ SYSTEM32 \ ILKKJ.INI C: \ WINDOWS \ SYSTEM32 \ ILKKJ.INI2 C: \ WINDOWS \ SYSTEM32 \ JJJLM.INI C: \ WINDOWS \ SYSTEM32 \ JJJLM.INI2 C: \ WINDOWS \ SYSTEM32 \ LLKKJ.INI C: \ WINDOWS \ SYSTEM32 \ LLKKJ.INI2 C: \ WINDOWS \ SYSTEM32 \ LNNMP.INI2 C: \ WINDOWS \ SYSTEM32 \ MCRH.TMP C: \ WINDOWS \ SYSTEM32 \ RRQSS.INI C: \ WINDOWS \ SYSTEM32 \ VVVWA.INI2 Adware.Vundo-Variant C: \ WINDOWS \ SYSTEM32 \ DDCCA.DLL C: \ WINDOWS \ SYSTEM32 \ SSQRR.DLL Trace.Known hrozby Zdroje C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ index [1]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ WTAN0PYF \ dno [2]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ WTAN0PYF \ i53b_t1 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 4P6RS5MF \ CAXOO75T.htm C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ WTAN0PYF \ xrest [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ ajax [1]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CTY381ER \ verx [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ WTAN0PYF \ i701_brd-top-1 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ WTAN0PYF \ manažérov [1]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ WTAN0PYF \ errorhandler [2]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CTY381ER \ i701_line2 [1]. Jpg C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ i701_boton1 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ WTAN0PYF \ errorhandler [1]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ WTAN0PYF \ niz [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 4P6RS5MF \ errorhandler [1]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CTY381ER \ i53b_btn-funkcií [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ i701_cor-left-1 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CTY381ER \ i53b_icon3 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 4P6RS5MF \ crypt [1]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 4P6RS5MF \ okno [1]. Js C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ čistý [1]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ i53b_bg1 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ štatistiky [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ top [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ SDWBGNOV \ main_02 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ CASL6F4X.htm C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ i53b_line2 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 4P6RS5MF \ i701_cor-right-1 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ AHGZAXI5 \ odporučiť [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ i53b_icon5 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ štýlov [5]. Css C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ ZLGK0BFB \ off_2 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 4P6RS5MF \ i701_bg2 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ pokroku [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CTY381ER \ i53b_btn-prehľad [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CTY381ER \ index [5]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CTY381ER \ štatistiky [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ i701_bg3 [1]. Jpg C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 8NKJEV4R \ bottom_r_2 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 4P6RS5MF \ naliehavé [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ errorhandler [1]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 4P6RS5MF \ AC_RunActiveContent [1]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 4P6RS5MF \ stredné [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ QX8BMXM5 \ štýly [2]. Css C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 4P6RS5MF \ i53b_boton4 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ WTAN0PYF \ i53b_btn-kúpa [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ spacer [4]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 4P6RS5MF \ ajax [1]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ G92ZKB2T \ značka [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CX8VSB4B \ bottom_r [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CTY381ER \ crypt [1]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ LO76ZR17 \ errsnd [1]. SWF C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CX8VSB4B \ bottom_l [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CTY381ER \ i53b_brd-top-1 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CTY381ER \ crypt [2]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ AHGZAXI5 \ secpan [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ i53b_btn-home [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CTY381ER \ CAUJABA1.htm C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ WTAN0PYF \ AC_ActiveX [1]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 4P6RS5MF \ i53b_line3 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 4P6RS5MF \ checa [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ WTAN0PYF \ i53b_icon1 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ WTAN0PYF \ ajax [1]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 4P6RS5MF \ i53b_btn-download [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ ZLGK0BFB \ x [2]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CTY381ER \ CA3MKJZH.htm C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ WTAN0PYF \ i701_BG [1]. Jpg C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ i701_line1 [1]. Jpg C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ i701_brd-bot-1 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ WTAN0PYF \ i701_pc [1]. Jpg C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 4P6RS5MF \ i53b_boton2 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ i53b_brd-bot-1 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ WTAN0PYF \ i701_bg4 [1]. Jpg C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 4P6RS5MF \ manažérov [1]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 4P6RS5MF \ i53b_btn-aktualizácií [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ manažérov [1]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ UR2NQ1UR \ záznam [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ WTAN0PYF \ flash [1]. Js C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 4P6RS5MF \ i701_spacer [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ AL6HK9M7 \ main_06 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ head_r_back [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ LO76ZR17 \ štít [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ WTAN0PYF \ i701_line3 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CTY381ER \ i701_boton2 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CTY381ER \ flash_detect [1]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ M1Q5EV4X \ hrať [1]. Js C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ UR2NQ1UR \ main_10 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ M1Q5EV4X \ main_05 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ QX8BMXM5 \ kríž [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ G92ZKB2T \ main_07 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ EJ23EDUF \ closebutton [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ 8NKJEV4R \ main_03 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CTY381ER \ ban_2 [1]. SWF C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CTY381ER \ logo2 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ WTAN0PYF \ data [1]. HTM C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ LO76ZR17 \ off_back [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ AL6HK9M7 \ download [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ M1Q5EV4X \ main_04 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ W9AJSLIB \ popup [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ CTY381ER \ left_3 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ QX8BMXM5 \ bottom_l_2 [1]. Gif C: \ Documents and Settings \ Rozi \ Local Settings \ Temporary Internet Files \ Content.IE5 \ Z81HJ8WK \ right_2 [1]. Gif Malwarebytes' Anti-Malware 1.10 Databáza verzia: 592 Vyhľadávať typ: Úplné Scan (A: \ | C: \ | D: \ | E: \ | H: \ | I: \ | J: \ |) Objekty skenovanej: 336027 Doba letu: 1 hodina (s), 8 minút (y) 1 sekúnd (y) Pamäťové procesy Infikovaná: 5 Infikované pamäťové moduly: 0 Registry Keys Infikovaná: 10 Infikované hodnoty databázy Registry: 7 Infikované položky dat registru: 0 Infikované zložky: 0 Infikované súbory: 11 Infikované pamäťové procesy: C: \ WINDOWS \ system32 \ drivers \ Ctfmon.exe (Trojan.Agent) -> Nevyložené procesom úspešne. C: \ WINDOWS \ system32 \ drivers \ Ctfmon.exe (Trojan.Agent) -> Nevyložené procesom úspešne. C: \ Documents and Settings \ Danny \ Local Settings \ Data aplikací \ spool.exe (Trojan.Agent) -> Nevyložené procesom úspešne. C: \ Documents and Settings \ Danny \ Local Settings \ Data aplikací \ spool.exe (Trojan.Agent) -> Nevyložené procesom úspešne. C: \ Documents and Settings \ Danny \ Local Settings \ Data aplikací \ spool.exe (Trojan.Agent) -> Nevyložené procesom úspešne. Infikované pamäťové moduly: (Žiadne položky zistený škodlivý) Infikované kľúče databázy Registry: HKEY_LOCAL_MACHINE \ SYSTEM \ ControlSet001 \ Services \ s chedule (Trojan.Agent) -> karanténe a úspešne vymazaná. HKEY_LOCAL_MACHINE \ SYSTEM \ ControlSet002 \ Services \ s chedule (Trojan.Agent) -> karanténe a úspešne vymazaná. HKEY_LOCAL_MACHINE \ SYSTEM \ CurrentControlSet \ Servic es \ rozvrh (Trojan.Agent) -> karanténe a úspešne vymazaná. HKEY_CURRENT_USER \ Software \ Microsoft \ affri (Malware.Trace) -> karanténe a úspešne vymazaná. HKEY_CURRENT_USER \ Software \ Microsoft \ affltid (Malware.Trace) -> karanténe a úspešne vymazaná. HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ affltid (Malware.Trace) -> karanténe a úspešne vymazaná. HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ affri (Malware.Trace) -> karanténe a úspešne vymazaná. HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ MS Juan (Malware.Trace) -> karanténe a úspešne vymazaná. HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ FCOVM (Trojan.Vundo) -> karanténe a úspešne vymazaná. HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ RemoveRP (Trojan.Vundo) -> karanténe a úspešne vymazaná. Infikované hodnoty databázy Registry: HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ Curr entVersion \ Run \ BMafb2445c (Trojan.Agent) -> karanténe a úspešne vymazaná. HKEY_CURRENT_USER \ SOFTWARE \ Microsoft \ Windows \ Curr ntVersion \ Run \ ntuser (Trojan.Agent) -> karanténe a úspešne vymazaná. HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ Curr entVersion \ Run \ ntuser (Trojan.Agent) -> karanténe a úspešne vymazaná. HKEY_USERS \. DEFAULT \ SOFTWARE \ Microsoft \ Windows \ Cur rentVersion \ Run \ ntuser (Trojan.Agent) -> karanténe a úspešne vymazaná. HKEY_USERS \. DEFAULT \ SOFTWARE \ Microsoft \ Windows \ Cur rentVersion \ Run \ autoload (Trojan.Agent) -> karanténe a úspešne vymazaná. HKEY_CURRENT_USER \ SOFTWARE \ Microsoft \ Windows \ Curr ntVersion \ Run \ autoload (Trojan.Agent) -> karanténe a úspešne vymazaná. HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ Curr entVersion \ Run \ autoload (Trojan.Agent) -> karanténe a úspešne vymazaná. Infikované položky údajov databázy Registry: (Žiadne položky zistený škodlivý) Infikované zložky: (Žiadne položky zistený škodlivý) Infikované súbory: C: \ Documents and Settings \ LocalService \ Local Settings \ Temporary Internet Files \ Content.IE5 \ GHIJKLMN \ kolesách [1]. Jpg (Trojan.Madcode) -> karanténe a úspešne vymazaná. C: \ System Volume Information \ _restore (B4EDD13F-A6F1-41A1-814E-E5C94DDA45B5) \ RP8 \ A0002994.exe (Trojan.Downloader) -> karanténe a úspešne vymazaná. C: \ WINDOWS \ system32 \ iupdate.exe (Trojan.Madcode) -> karanténe a úspešne vymazaná. C: \ WINDOWS \ system32 \ kchkioor.dll (Trojan.Agent) -> Vymaza o znovuzrodení. C: \ WINDOWS \ system32 \ drivers \ Ctfmon.exe (Trojan.Agent) -> karanténe a úspešne vymazaná. C: \ WINDOWS \ system32 \ pac.txt (Malware.Trace) -> karanténe a úspešne vymazaná. C: \ WINDOWS \ system32 \ drivers \ spools.exe (Trojan.Agent) -> karanténe a úspešne vymazaná. C: \ Documents and Settings \ Danny \ cftmon.exe (Trojan.Agent) -> karanténe a úspešne vymazaná. C: \ Documents and Settings \ Rozi \ Local Settings \ Data aplikací \ spool.exe (Trojan.Agent) -> karanténe a úspešne vymazaná. C: \ Documents and Settings \ LocalService \ Local Settings \ Data aplikací \ spool.exe (Trojan.Agent) -> karanténe a úspešne vymazaná. C: \ Documents and Settings \ Danny \ Local Settings \ Data aplikací \ spool.exe (Trojan.Agent) -> karanténe a úspešne vymazaná. Logfile Trend Micro HijackThis v2.0.2 Scan uložené v 08:45:34 dňa 05.04.2008 Platforma: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Zavádzacia mód: Normálny Bežiace procesy: C: \ WINDOWS \ System32 \ Smss.exe C: \ WINDOWS \ system32 \ Winlogon.exe C: \ WINDOWS \ system32 \ Services.exe C: \ WINDOWS \ system32 \ lsass.exe C: \ WINDOWS \ system32 \ Ati2evxx.exe C: \ WINDOWS \ system32 \ svchost.exe C: \ WINDOWS \ system32 \ svchost.exe C: \ WINDOWS \ system32 \ Ati2evxx.exe C: \ WINDOWS \ system32 \ Spoolsv.exe C: \ WINDOWS \ Explorer.exe C: \ Program Files \ AMD \ RAIDXpert \ mólo \ extra \ win32 \ Wrapper.exe C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe C: \ Program Files \ Grisoft \ AVG Anti-Spyware 7.5 \ guard.exe C: \ Program Files \ AMD \ RAIDXpert \ _jvm \ bin \ java.exe C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgamsvr.exe C: \ WINDOWS \ system32 \ rundll32.exe C: \ Program Files \ btbb_wcm \ McciTrayApp.exe C: \ PROGRA ~ 1 \ Yahoo! \ Browser \ ybrwicon.exe C: \ Program Files \ HP \ HP Software Update \ HPWuSchd2.exe C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgupsvc.exe C: \ Program Files \ Logitech \ MediaLife \ MediaLifeService.exe C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgemc.exe C: \ WINDOWS \ Samsung \ LaserSMMgr \ ssmmgr.exe C: \ PROGRA ~ 1 \ Yahoo! \ Yop \ yop.exe C: \ PROGRA ~ 1 \ Yahoo! \ Browser \ ycommon.exe C: \ Program Files \ SPAMfighter \ SFAgent.exe C: \ Program Files \ BT Broadband Desktop Pomoc \ bin \ BTHelpNotifier.exe C: \ Program Files \ Bonjour \ mDNSResponder.exe C: \ Program Files \ Google \ Common \ Google Updater \ GoogleUpdaterService.exe C: \ Program Files \ SPAMfighter \ sfus.exe C: \ Program Files \ ATI Technologies \ ATI.ACE \ Core-Statické \ MOM.EXE C: \ WINDOWS \ system32 \ svchost.exe C: \ WINDOWS \ system32 \ spool \ drivers \ w32x86 \ 3 \ hpztsb0 4.exe C: \ WINDOWS \ system32 \ wltrysvc.exe C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgcc.exe C: \ PROGRA ~ 1 \ MI948F ~ 1 \ GAMECO ~ 1 \ Common \ SWTrayV4.exe C: \ WINDOWS \ system32 \ bcmwltry.exe C: \ Program Files \ iTunes \ iTunesHelper.exe C: \ Program Files \ Microsoft IntelliType Pro \ itype.exe C: \ Program Files \ Microsoft IntelliPoint \ ipoint.exe C: \ Program Files \ Grisoft \ AVG Anti-Spyware 7.5 \ avgas.exe C: \ Program Files \ Microsoft IntelliType Pro \ dpupdchk.exe C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ jusched.exe C: \ WINDOWS \ system32 \ Ctfmon.exe C: \ Program Files \ Google \ GoogleToolbarNotifier \ GoogleToolbarNo tifier.exe C: \ Program Files \ DNA \ btdna.exe C: \ Program Files \ Messenger \ Msmsgs.exe C: \ PROGRA ~ 1 \ Yahoo! \ Yop \ SSDK02.exe C: \ Program Files \ SuperAntiSpyware \ SUPERAntiSpyware.exe C: \ WINDOWS \ system32 \ msiexec.exe C: \ Program Files \ iPod \ bin \ iPodService.exe C: \ Program Files \ HP \ Digital Zobrazovacie \ bin \ hpqtra08.exe C: \ Program Files \ NETGEAR WG311v2 Adapter \ wlancfg5.exe C: \ Program Files \ BT Broadband Desktop Pomoc \ bin \ mpbtn.exe C: \ WINDOWS \ system32 \ svchost.exe C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ javaw.exe C: \ WINDOWS \ system32 \ wuauclt.exe C: \ WINDOWS \ system32 \ wuauclt.exe C: \ Program Files \ ATI Technologies \ ATI.ACE \ Core-Statické \ ccc.exe C: \ Program Files \ Internet Explorer \ iexplore.exe C: \ Program Files \ Trend Micro \ HijackThis \ HijackThis.exe R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://news.bbc.co.uk/sport1/hi/football/default.stm R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Bar = http://uk.red.clientapps.yahoo.com/c...o/bt_side.html R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Int ernet Nastavenia, ProxyOverride = 127.0.0.1; *. miestnej R3 - URLSearchHook: Yahoo! Toolbar - (EF99BD32-C1FB-11D2-892F-0090271D4F88) - C: \ Program Files \ Yahoo! \ Companion \ Inštalácia \ cpn0 \ yt.dll O2 - BHO: (bez názvu) - (3CAB59B4-55A3-4737-9FD5-B93C6430BF75) - C: \ WINDOWS \ system32 \ sjmxcfmu.dll O2 - BHO: SSVHelper triedy - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ ssv.dll O3 - Toolbar: Yahoo! Toolbar - (EF99BD32-C1FB-11D2-892F-0090271D4F88) - C: \ Program Files \ Yahoo! \ Companion \ Inštalácia \ cpn0 \ yt.dll O3 - Toolbar: & Google - (2318C2B1-4965-11D4-9B18-009027A5CD4F) - c: \ program files \ google \ googletoolbar1.dll O3 - Toolbar: Opýtajte Toolbar - (F0D4B239-DA4B-4daf-81E4-DFEE4931A4AA) - C: \ Program Files \ AskSBar \ bar \ 1.bin \ ASKSBAR.DLL O4 - HKLM \ .. \ Run: [C6501Sound] rundll32 c6501.cpl, CMICtrlWnd O4 - HKLM \ .. \ Run: [btbb_wcm_McciTrayApp] C: \ Program Files \ btbb_wcm \ McciTrayApp.exe O4 - HKLM \ .. \ Run: [YBrowser] C: \ PROGRA ~ 1 \ Yahoo! \ Browser \ ybrwicon.exe O4 - HKLM \ .. \ Run: [HPHUPD08] C: \ Program Files \ HP \ Digital Zobrazovacie \ (33D6CC28-9F75-4d1b-A11D-98895B3A3729) \ hphupd08.exe O4 - HKLM \ .. \ Run: [HP Software Update] C: \ Program Files \ HP \ HP Software Update \ HPWuSchd2.exe O4 - HKLM \ .. \ Run: [MediaLifeService] "C: \ Program Files \ Logitech \ MediaLife \ MediaLifeService.exe" O4 - HKLM \ .. \ Run: [Samsung LBP SM] "C: \ WINDOWS \ Samsung \ LaserSMMgr \ ssmmgr.exe" / autorun O4 - HKLM \ .. \ Run: [Yop] C: \ PROGRA ~ 1 \ Yahoo! \ Yop \ yop.exe / autostart O4 - HKLM \ .. \ Run: [SPAMfighter Agent] "C: \ Program Files \ SPAMfighter \ SFAgent.exe" update meškanie 60 O4 - HKLM \ .. \ Run: [btbb_McciTrayApp] C: \ Program Files \ BT Broadband Desktop Pomoc \ bin \ BTHelpNotifier.exe O4 - HKLM \ .. \ Run: [StartCCC] "C: \ Program Files \ ATI Technologies \ ATI.ACE \ Core-Statické \ CLIStart.exe" O4 - HKLM \ .. \ Run: [amd_dc_opt] C: \ Program Files \ AMD \ dvoch-malvicové optimalizáciu \ amd_dc_opt.exe O4 - HKLM \ .. \ Run: [HPDJ paneli Utility] C: \ WINDOWS \ system32 \ spool \ drivers \ w32x86 \ 3 \ hpztsb0 4.exe O4 - HKLM \ .. \ Run: [AVG7_CC] C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgcc.exe / StartUp O4 - HKLM \ .. \ Run: [SideWinderTrayV4] C: \ PROGRA ~ 1 \ MI948F ~ 1 \ GAMECO ~ 1 \ Common \ SWTrayV4.exe O4 - HKLM \ .. \ Run: [QuickTime Úloha] "C: \ Program Files \ QuickTime \ qttask.exe"-atboottime O4 - HKLM \ .. \ Run: [iTunesHelper] "C: \ Program Files \ iTunes \ iTunesHelper.exe" O4 - HKLM \ .. \ Run: [itype] "C: \ Program Files \ Microsoft IntelliType Pro \ itype.exe" O4 - HKLM \ .. \ Run: [IntelliPoint] "C: \ Program Files \ Microsoft IntelliPoint \ ipoint.exe" O4 - HKLM \ .. \ Run: [! AVG Anti-Spyware] "C: \ Program Files \ Grisoft \ AVG Anti-Spyware 7.5 \ avgas.exe" / minimalizovaného O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] "C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ jusched.exe" O4 - HKCU \ .. \ Run: [Cttfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe O4 - HKCU \ .. \ Run: [SWG] C: \ Program Files \ Google \ GoogleToolbarNotifier \ GoogleToolbarNo tifier.exe O4 - HKCU \ .. \ Run: [Bittorrent DNA] "C: \ Program Files \ DNA \ btdna.exe" O4 - HKCU \ .. \ Run: [MSMSGS] "C: \ Program Files \ Messenger \ Msmsgs.exe" / pozadia O4 - HKCU \ .. \ Run: [SuperAntiSpyware] C: \ Program Files \ SuperAntiSpyware \ SUPERAntiSpyware.exe O4 - HKUS \ S-1-5-19 \ .. \ Run: [Cttfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe (User 'miestnych') O4 - HKUS \ S-1-5-19 \ .. \ Run: [AVG7_Run] C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgw.exe / RunOnce (User 'miestnych') O4 - HKUS \ S-1-5-20 \ .. \ Run: [Cttfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe (User 'Network Service') O4 - HKUS \ S-1-5-18 \ .. \ Run: [Cttfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe (User 'systém') O4 - HKUS \. DEFAULT \ .. \ Run: [Cttfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe (User 'Predvolené užívateľ') O4 - spustenie: MP3 Rocket (minimized). Lnk = C: \ Program Files \ MP3 Rocket \ MP3Rocket.exe O4 - Global spustení: BT Broadband Desktop Help.lnk = C: \ Program Files \ BT Broadband Desktop Pomoc \ bin \ matcli.exe O4 - Global spustení: HP Digital Zobrazovacie Monitor.lnk = C: \ Program Files \ HP \ Digital Zobrazovacie \ bin \ hpqtra08.exe O4 - Global spustení: WG311v2 NETGEAR Smart Configuration.lnk = C: \ Program Files \ NETGEAR WG311v2 Adapter \ wlancfg5.exe O8 - Extra kontextového menu položku: & Čistý Traces - C: \ Program Files \ DAP \ Súkromie balík \ dapcleanerie.htm O8 - Extra kontextového menu položku: & Stiahnuť pomocou & DAP - C: \ Program Files \ DAP \ dapextie.htm O8 - Extra kontextového menu položku: Download & all s DAP - C: \ Program Files \ DAP \ dapextie2.htm O9 - Extra tlačidlá: (bez názvu) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ ssv.dll O9 - Extra tlačidlá: BT Yahoo! Services - (5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897) - C: \ PROGRA ~ 1 \ Yahoo! \ Common \ yiesrvc.dll O9 - Extra tlačidlá: Messenger - (FB5F1910-F110-11D2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ Msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - (FB5F1910-F110-11D2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ Msmsgs.exe O16 - DPF: (17492023-C23A-453E-A040-C7C580BBF700) (Windows Genuine Advantage validáciu Tool) -- http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: (30528230-99f7-4bb4-88d8-fa1d4f56a2ab) (Inštalácia Support) - C: \ Program Files \ Yahoo! \ Common \ Yinsthelper20073151.dll O16 - DPF: (6F15128C-E66A-490C-B848-5000B5ABEEAC) (HP Download Manager) -- https: / / h20436.www2.hp.com/ediags/de...e/HPDEXAXO.cab O16 - DPF: (BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B) (Zylom Hry Player) -- http://game07.zylom.com/activex/zylomgamesplayer.cab O16 - DPF: (D27CDB6E-AE6D-11CF-96B8-444553540000) (Shockwave Flash Object) -- http://fpdownload2.macromedia.com/ge...nt/swflash.cab O20 - Winlogon Upozornenie:! SASWinLogon - C: \ Program Files \ SuperAntiSpyware \ SASWINLO.dll O20 - Winlogon Upozornenie: tuvsqpq - tuvsqpq.dll (súbor chýba) O20 - Winlogon Upozornenie: yaywuvw - yaywuvw.dll (súbor chýba) O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C: \ Program Files \ Lavasoft \ Ad-Aware 2007 \ aawservice.exe O23 - Service: AMD RAIDXpert (AMDRAIDXpert) - Neznámy vlastník - C: \ Program Files \ AMD \ RAIDXpert \ mólo \ extra \ win32 \ Wrapper.exe O23 - Service: Apple Mobile Device - Apple, Inc - C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc - C: \ WINDOWS \ system32 \ Ati2evxx.exe O23 - Service: ATI Smart - Neznámy vlastník - C: \ WINDOWS \ system32 \ ati2sgag.exe O23 - Service: AVG Anti-Spyware garda - GRISOFT sro - C: \ Program Files \ Grisoft \ AVG Anti-Spyware 7.5 \ guard.exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, sro - C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, sro - C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgupsvc.exe O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, sro - C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgemc.exe O23 - Service: Bonjour Service - Apple Inc - C: \ Program Files \ Bonjour \ mDNSResponder.exe O23 - Service: Google Updater Service (gusvc) - Google - C: \ Program Files \ Google \ Common \ Google Updater \ GoogleUpdaterService.exe O23 - Service: InstallDriver Tabuľka Manager (IDriverT) - Macrovision Corporation - C: \ Program Files \ Common Files \ InstallShield \ Driver \ 11 \ Intel 32 \ IDriverT.exe O23 - Service: iPod Service - Apple Inc - C: \ Program Files \ iPod \ bin \ iPodService.exe O23 - Service: PML Driver HPZ12 - Neznámy vlastník - C: \ WINDOWS \ system32 \ HPZipm12.exe (file chýba) O23 - Service: Update Service SPAMfighter - SPAMfighter ApS - C: \ Program Files \ SPAMfighter \ sfus.exe O23 - Service: WLTRYSVC - Neznámy vlastník - C: \ WINDOWS \ system32 \ wltrysvc.exe O23 - Service: YPCService - Yahoo! Inc - C: \ WINDOWS \ system32 \ YPCSER ~ 1.EXE -- Koniec súboru - 10856 bytes Děkuji |
|
#7
5. apríla 2008, 01:27
| |||
| |||
| Pomalšie a pomalšie Vyzerá to, že tam bolo veľa odstránené, stále existujú niektoré sporné, záznamy v Hijackthis log tak musíme bežať niekoľko rôznych nástrojov. Stiahnuť Vundofix.exe do počítača.
Dajte Vundo povrch, niekedy to môže trvať niekoľko priesmykov ---------- Stiahnuť SDFix.exe a uložte ho na plochu. Dvojitým kliknutím SDFix.exe a bude extrahovať súbory do% systemdrive% (Disk, ktorý obsahuje Windows Directory, typicky C: \ SDFix) Prosím, potom reštartujte počítač v Núdzový režim pomocou nasledujúcich možností:
Teraz stačí spustiť novú Hijackthis skenovať a po mnoho log spoločne s ostatnými. Tiež dajte mi vedieť, ako sa veci majú teraz.
__________________ |
|
#8
5. apríla 2008, 02:23
| |||
| |||
| Pomalšie a pomalšie OK Ďalšie dve. VundoFix V7.0.3 Scan started at 10:07:05 05/04/2008 Výpis nájdených súborov, zatiaľ čo skenovanie .... C: \ WINDOWS \ system32 \ anthkpru.dll Začiatok sťahovanie ... Pokus o vymazanie priečinka C: \ WINDOWS \ system32 \ anthkpru.dll C: \ WINDOWS \ system32 \ anthkpru.dll bol zmazaný! Tančí Opravy do registra. Hotovo! Logfile Trend Micro HijackThis v2.0.2 Scan uložené v 10:18:53 dňa 05.04.2008 Platforma: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Zavádzacia mód: Normálny Bežiace procesy: C: \ WINDOWS \ System32 \ Smss.exe C: \ WINDOWS \ system32 \ Winlogon.exe C: \ WINDOWS \ system32 \ Services.exe C: \ WINDOWS \ system32 \ lsass.exe C: \ WINDOWS \ system32 \ Ati2evxx.exe C: \ WINDOWS \ system32 \ svchost.exe C: \ WINDOWS \ system32 \ svchost.exe C: \ WINDOWS \ system32 \ Ati2evxx.exe C: \ WINDOWS \ system32 \ Spoolsv.exe C: \ WINDOWS \ Explorer.exe C: \ Program Files \ AMD \ RAIDXpert \ mólo \ extra \ win32 \ Wrapper.exe C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe C: \ Program Files \ Grisoft \ AVG Anti-Spyware 7.5 \ guard.exe C: \ Program Files \ AMD \ RAIDXpert \ _jvm \ bin \ java.exe C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgamsvr.exe C: \ WINDOWS \ system32 \ rundll32.exe C: \ Program Files \ btbb_wcm \ McciTrayApp.exe C: \ PROGRA ~ 1 \ Yahoo! \ Browser \ ybrwicon.exe C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgupsvc.exe C: \ Program Files \ HP \ HP Software Update \ HPWuSchd2.exe C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgemc.exe C: \ Program Files \ Logitech \ MediaLife \ MediaLifeService.exe C: \ PROGRA ~ 1 \ Yahoo! \ Browser \ ycommon.exe C: \ WINDOWS \ Samsung \ LaserSMMgr \ ssmmgr.exe C: \ Program Files \ Bonjour \ mDNSResponder.exe C: \ PROGRA ~ 1 \ Yahoo! \ Yop \ yop.exe C: \ Program Files \ Google \ Common \ Google Updater \ GoogleUpdaterService.exe C: \ Program Files \ SPAMfighter \ SFAgent.exe C: \ Program Files \ SPAMfighter \ sfus.exe C: \ WINDOWS \ system32 \ svchost.exe C: \ WINDOWS \ system32 \ wltrysvc.exe C: \ WINDOWS \ system32 \ bcmwltry.exe C: \ Program Files \ BT Broadband Desktop Pomoc \ bin \ BTHelpNotifier.exe C: \ Program Files \ ATI Technologies \ ATI.ACE \ Core-Statické \ MOM.EXE C: \ WINDOWS \ system32 \ spool \ drivers \ w32x86 \ 3 \ hpztsb0 4.exe C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgcc.exe C: \ PROGRA ~ 1 \ MI948F ~ 1 \ GAMECO ~ 1 \ Common \ SWTrayV4.exe C: \ Program Files \ Microsoft IntelliType Pro \ itype.exe C: \ Program Files \ Microsoft IntelliPoint \ ipoint.exe C: \ Program Files \ Microsoft IntelliPoint \ dpupdchk.exe C: \ Program Files \ Grisoft \ AVG Anti-Spyware 7.5 \ avgas.exe C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ jusched.exe C: \ PROGRA ~ 1 \ Yahoo! \ Yop \ SSDK02.exe C: \ Program Files \ iTunes \ iTunesHelper.exe C: \ WINDOWS \ system32 \ Ctfmon.exe C: \ Program Files \ Google \ GoogleToolbarNotifier \ GoogleToolbarNo tifier.exe C: \ Program Files \ DNA \ btdna.exe C: \ WINDOWS \ system32 \ msiexec.exe C: \ Program Files \ iPod \ bin \ iPodService.exe C: \ Program Files \ Messenger \ Msmsgs.exe C: \ Program Files \ SuperAntiSpyware \ SUPERAntiSpyware.exe C: \ Program Files \ ATI Technologies \ ATI.ACE \ Core-Statické \ ccc.exe C: \ Program Files \ HP \ Digital Zobrazovacie \ bin \ hpqtra08.exe C: \ WINDOWS \ system32 \ svchost.exe C: \ Program Files \ BT Broadband Desktop Pomoc \ bin \ mpbtn.exe C: \ Program Files \ NETGEAR WG311v2 Adapter \ wlancfg5.exe C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ javaw.exe C: \ WINDOWS \ system32 \ wuauclt.exe C: \ Program Files \ Internet Explorer \ iexplore.exe C: \ WINDOWS \ system32 \ wuauclt.exe C: \ Program Files \ Trend Micro \ HijackThis \ HijackThis.exe R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://news.bbc.co.uk/sport1/hi/football/default.stm R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Bar = http://uk.red.clientapps.yahoo.com/c...o/bt_side.html R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Int ernet Nastavenia, ProxyOverride = 127.0.0.1; *. miestnej R3 - URLSearchHook: Yahoo! Toolbar - (EF99BD32-C1FB-11D2-892F-0090271D4F88) - C: \ Program Files \ Yahoo! \ Companion \ Inštalácia \ cpn0 \ yt.dll O2 - BHO: (bez názvu) - (3CAB59B4-55A3-4737-9FD5-B93C6430BF75) - C: \ WINDOWS \ system32 \ sjmxcfmu.dll O2 - BHO: SSVHelper triedy - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ ssv.dll O3 - Toolbar: Yahoo! Toolbar - (EF99BD32-C1FB-11D2-892F-0090271D4F88) - C: \ Program Files \ Yahoo! \ Companion \ Inštalácia \ cpn0 \ yt.dll O3 - Toolbar: & Google - (2318C2B1-4965-11D4-9B18-009027A5CD4F) - c: \ program files \ google \ googletoolbar1.dll O3 - Toolbar: Opýtajte Toolbar - (F0D4B239-DA4B-4daf-81E4-DFEE4931A4AA) - C: \ Program Files \ AskSBar \ bar \ 1.bin \ ASKSBAR.DLL O4 - HKLM \ .. \ Run: [C6501Sound] rundll32 c6501.cpl, CMICtrlWnd O4 - HKLM \ .. \ Run: [btbb_wcm_McciTrayApp] C: \ Program Files \ btbb_wcm \ McciTrayApp.exe O4 - HKLM \ .. \ Run: [YBrowser] C: \ PROGRA ~ 1 \ Yahoo! \ Browser \ ybrwicon.exe O4 - HKLM \ .. \ Run: [HPHUPD08] C: \ Program Files \ HP \ Digital Zobrazovacie \ (33D6CC28-9F75-4d1b-A11D-98895B3A3729) \ hphupd08.exe O4 - HKLM \ .. \ Run: [HP Software Update] C: \ Program Files \ HP \ HP Software Update \ HPWuSchd2.exe O4 - HKLM \ .. \ Run: [MediaLifeService] "C: \ Program Files \ Logitech \ MediaLife \ MediaLifeService.exe" O4 - HKLM \ .. \ Run: [Samsung LBP SM] "C: \ WINDOWS \ Samsung \ LaserSMMgr \ ssmmgr.exe" / autorun O4 - HKLM \ .. \ Run: [Yop] C: \ PROGRA ~ 1 \ Yahoo! \ Yop \ yop.exe / autostart O4 - HKLM \ .. \ Run: [SPAMfighter Agent] "C: \ Program Files \ SPAMfighter \ SFAgent.exe" update meškanie 60 O4 - HKLM \ .. \ Run: [btbb_McciTrayApp] C: \ Program Files \ BT Broadband Desktop Pomoc \ bin \ BTHelpNotifier.exe O4 - HKLM \ .. \ Run: [StartCCC] "C: \ Program Files \ ATI Technologies \ ATI.ACE \ Core-Statické \ CLIStart.exe" O4 - HKLM \ .. \ Run: [amd_dc_opt] C: \ Program Files \ AMD \ dvoch-malvicové optimalizáciu \ amd_dc_opt.exe O4 - HKLM \ .. \ Run: [HPDJ paneli Utility] C: \ WINDOWS \ system32 \ spool \ drivers \ w32x86 \ 3 \ hpztsb0 4.exe O4 - HKLM \ .. \ Run: [AVG7_CC] C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgcc.exe / StartUp O4 - HKLM \ .. \ Run: [SideWinderTrayV4] C: \ PROGRA ~ 1 \ MI948F ~ 1 \ GAMECO ~ 1 \ Common \ SWTrayV4.exe O4 - HKLM \ .. \ Run: [itype] "C: \ Program Files \ Microsoft IntelliType Pro \ itype.exe" O4 - HKLM \ .. \ Run: [IntelliPoint] "C: \ Program Files \ Microsoft IntelliPoint \ ipoint.exe" O4 - HKLM \ .. \ Run: [! AVG Anti-Spyware] "C: \ Program Files \ Grisoft \ AVG Anti-Spyware 7.5 \ avgas.exe" / minimalizovaného O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] "C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ jusched.exe" O4 - HKLM \ .. \ Run: [QuickTime Úloha] "C: \ Program Files \ QuickTime \ QTTask.exe"-atboottime O4 - HKLM \ .. \ Run: [iTunesHelper] "C: \ Program Files \ iTunes \ iTunesHelper.exe" O4 - HKCU \ .. \ Run: [Cttfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe O4 - HKCU \ .. \ Run: [SWG] C: \ Program Files \ Google \ GoogleToolbarNotifier \ GoogleToolbarNo tifier.exe O4 - HKCU \ .. \ Run: [Bittorrent DNA] "C: \ Program Files \ DNA \ btdna.exe" O4 - HKCU \ .. \ Run: [MSMSGS] "C: \ Program Files \ Messenger \ Msmsgs.exe" / pozadia O4 - HKCU \ .. \ Run: [SuperAntiSpyware] C: \ Program Files \ SuperAntiSpyware \ SUPERAntiSpyware.exe O4 - HKUS \ S-1-5-19 \ .. \ Run: [Cttfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe (User 'miestnych') O4 - HKUS \ S-1-5-19 \ .. \ Run: [AVG7_Run] C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgw.exe / RunOnce (User 'miestnych') O4 - HKUS \ S-1-5-20 \ .. \ Run: [Cttfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe (User 'Network Service') O4 - HKUS \ S-1-5-18 \ .. \ Run: [Cttfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe (User 'systém') O4 - HKUS \. DEFAULT \ .. \ Run: [Cttfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe (User 'Predvolené užívateľ') O4 - spustenie: MP3 Rocket (minimized). Lnk = C: \ Program Files \ MP3 Rocket \ MP3Rocket.exe O4 - Global spustení: BT Broadband Desktop Help.lnk = C: \ Program Files \ BT Broadband Desktop Pomoc \ bin \ matcli.exe O4 - Global spustení: HP Digital Zobrazovacie Monitor.lnk = C: \ Program Files \ HP \ Digital Zobrazovacie \ bin \ hpqtra08.exe O4 - Global spustení: WG311v2 NETGEAR Smart Configuration.lnk = C: \ Program Files \ NETGEAR WG311v2 Adapter \ wlancfg5.exe O8 - Extra kontextového menu položku: & Čistý Traces - C: \ Program Files \ DAP \ Súkromie balík \ dapcleanerie.htm O8 - Extra kontextového menu položku: & Stiahnuť pomocou & DAP - C: \ Program Files \ DAP \ dapextie.htm O8 - Extra kontextového menu položku: Download & all s DAP - C: \ Program Files \ DAP \ dapextie2.htm O9 - Extra tlačidlá: (bez názvu) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ ssv.dll O9 - Extra tlačidlá: BT Yahoo! Services - (5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897) - C: \ PROGRA ~ 1 \ Yahoo! \ Common \ yiesrvc.dll O9 - Extra tlačidlá: Messenger - (FB5F1910-F110-11D2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ Msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - (FB5F1910-F110-11D2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ Msmsgs.exe O16 - DPF: (17492023-C23A-453E-A040-C7C580BBF700) (Windows Genuine Advantage validáciu Tool) -- http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: (30528230-99f7-4bb4-88d8-fa1d4f56a2ab) (Inštalácia Support) - C: \ Program Files \ Yahoo! \ Common \ Yinsthelper20073151.dll O16 - DPF: (6F15128C-E66A-490C-B848-5000B5ABEEAC) (HP Download Manager) -- https: / / h20436.www2.hp.com/ediags/de...e/HPDEXAXO.cab O16 - DPF: (BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B) (Zylom Hry Player) -- http://game07.zylom.com/activex/zylomgamesplayer.cab O16 - DPF: (D27CDB6E-AE6D-11CF-96B8-444553540000) (Shockwave Flash Object) -- http://fpdownload2.macromedia.com/ge...nt/swflash.cab O20 - Winlogon Upozornenie:! SASWinLogon - C: \ Program Files \ SuperAntiSpyware \ SASWINLO.dll O20 - Winlogon Upozornenie: tuvsqpq - tuvsqpq.dll (súbor chýba) O20 - Winlogon Upozornenie: yaywuvw - yaywuvw.dll (súbor chýba) O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C: \ Program Files \ Lavasoft \ Ad-Aware 2007 \ aawservice.exe O23 - Service: AMD RAIDXpert (AMDRAIDXpert) - Neznámy vlastník - C: \ Program Files \ AMD \ RAIDXpert \ mólo \ extra \ win32 \ Wrapper.exe O23 - Service: Apple Mobile Device - Apple, Inc - C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc - C: \ WINDOWS \ system32 \ Ati2evxx.exe O23 - Service: ATI Smart - Neznámy vlastník - C: \ WINDOWS \ system32 \ ati2sgag.exe O23 - Service: AVG Anti-Spyware garda - GRISOFT sro - C: \ Program Files \ Grisoft \ AVG Anti-Spyware 7.5 \ guard.exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, sro - C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, sro - C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgupsvc.exe O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, sro - C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgemc.exe O23 - Service: Bonjour Service - Apple Inc - C: \ Program Files \ Bonjour \ mDNSResponder.exe O23 - Service: Google Updater Service (gusvc) - Google - C: \ Program Files \ Google \ Common \ Google Updater \ GoogleUpdaterService.exe O23 - Service: InstallDriver Tabuľka Manager (IDriverT) - Macrovision Corporation - C: \ Program Files \ Common Files \ InstallShield \ Driver \ 11 \ Intel 32 \ IDriverT.exe O23 - Service: iPod Service - Apple Inc - C: \ Program Files \ iPod \ bin \ iPodService.exe O23 - Service: PML Driver HPZ12 - Neznámy vlastník - C: \ WINDOWS \ system32 \ HPZipm12.exe (file chýba) O23 - Service: Update Service SPAMfighter - SPAMfighter ApS - C: \ Program Files \ SPAMfighter \ sfus.exe O23 - Service: WLTRYSVC - Neznámy vlastník - C: \ WINDOWS \ system32 \ wltrysvc.exe O23 - Service: YPCService - Yahoo! Inc - C: \ WINDOWS \ system32 \ YPCSER ~ 1.EXE -- Koniec súboru - 10853 bytes |
|
#9
5. apríla 2008, 02:36
| |||
| |||
| Pomalšie a pomalšie SDFix log?
__________________ |
|
#10
5. apríla 2008, 02:51
| |||
| |||
| Pomalšie a pomalšie OK SDFix a najnovšie odstřelovač: Na zdravie SDFix: Version 1.166 Úcastníkov Danny dňa 05.04.2008 v 10:38 Microsoft Windows XP [Verzia 5.1.2600] Spustenie Od: C: \ sdfix \ SDFix Kontrola Služby : Obnovovanie systému Windows Registry Hodnoty Obnovovanie systému Windows Predvolený súbor Hosts Restartem Kontrola súborov : Trojan Súbory Nájdeno: C: \ WINDOWS \ Temp \ 1852.tmp.lst - zrušený C: \ WINDOWS \ Temp \ 2723.tmp.lst - zrušený C: \ WINDOWS \ Temp \ 2F76.tmp.lst - zrušený C: \ WINDOWS \ Temp \ 541A.tmp.lst - zrušený C: \ WINDOWS \ Temp \ 580D.tmp.lst - zrušený C: \ WINDOWS \ Temp \ 6E54.tmp.lst - zrušený C: \ WINDOWS \ fetchuserid.exe - zrušený Priečinku C: \ Program Files \ drmupgds - Odstránené Odstránenie Temp Súbory Kontrola ADS : Konečná kontrola : catchme 0.3.1344.2 W2K/XP/Vista - rootkit / stealth malware detektor by Gmer, http://www.gmer.net Rootkit scan 2008-04-05 10:44:19 Windows 5.1.2600 Service Pack 2 NTFS skenování skrytých procesov ... skenování skrytých služby a systém úľového ... skenování skrytých položiek registra ... skenování skrytých súborov ... scan úspešne dokončená skryté procesy: 0 skryté služby: 0 skryté súbory: 0 Ostatné služby : Autorizovaný aplikácií Kľúčové Export: [HKEY_LOCAL_MACHINE \ SYSTEM \ CurrentControlSet \ Servic es \ sharedaccess \ Parameters \ firewallpolicy \ štandardný profil \ authorizedapplications \ list] "C: \ \ Program Files \ \ BitTorrent \ \ bittorrent.exe" = "C: \ \ Program Files \ \ BitTorrent \ \ bittorrent.exe: *: Enabled: BitTor nájomné" "C: \ \ Program Files \ \ DNA \ \ btdna.exe" = "C: \ \ Program Files \ \ DNA \ \ btdna.exe: *: Enabled: DNA" "C: \ \ Program Files \ \ ICQ \ \ Icq.exe" = "C: \ \ Program Files \ \ ICQ \ \ Icq.exe: *: Enabled: ICQ" "C: \ \ Program Files \ \ Yahoo! \ \ Messenger \ \ YahooMessenger.exe" = "C: \ \ Program Files \ \ Yahoo! \ \ Messenger \ \ YahooMessenger.exe: *: Ena vykrvené: Yahoo! Messenger" "C: \ \ Program Files \ \ LimeWire \ \ LimeWire.exe" = "C: \ \ Program Files \ \ LimeWire \ \ LimeWire.exe: *: Enabled: LimeWire" "D: \ \ Program Files \ \ Microsoft Hry \ \ Flight Simulator 9 \ \ fs9.exe" = "D: \ \ Program Files \ \ Microsoft Hry \ \ Flight Simulator 9 \ \ fs9.exe: *: Enabled: Microsoft Flight Simulator " "C: \ \ WINDOWS \ \ system32 \ \ dpnsvr.exe" = "C: \ \ WINDOWS \ \ system32 \ \ dpnsvr.exe: *: Enabled: Microsoft DirectPlay8 Server" "C: \ \ Program Files \ \ Kontiki \ \ KService.exe" = "C: \ \ Program Files \ \ Kontiki \ \ KService.exe: *: Enabled: Dodávka Manager Service" "C: \ \ Program Files \ \ Ubisoft \ \ Prevodovka Software \ \ BrothersInArmsEiB \ \ System \ \ EiB.exe" = "C: \ \ Program Files \ \ Ubisoft \ \ Prevodovka Software \ \ BrothersInArmsEiB \ \ System \ \ EIB . exe: *: Ena vykrvené: Bratia so zbraňami zarobili v krvi " "C: \ \ Ventile \ \ Podmienka Zero \ \ czero.exe" = "C: \ \ Ventile \ \ Podmienka Zero \ \ czero.exe: *: Enabled: Podmienka Zero Launcher" "C: \ \ Program Files \ \ Java \ \ jre1.6.0_04 \ \ bin \ \ javaw.exe" = "C: \ \ Na gram Files \ \ Java \ \ jre1.6.0_04 \ \ bin \ \ javaw. exe: *: Enabled: Java (TM) Platforma SE binárnou " "C: \ \ Program Files \ \ DAP \ \ DAP.exe" = "C: \ \ Program Files \ \ DAP \ \ DAP.exe: *: Enabled: Download Accelerator Plus (DAP)" "% Windir% \ \ system32 \ \ Sessmgr.exe" = "% windir% \ \ system M32 \ \ Sessmgr.exe: *: Enabled: @ xpsp2res.dll, -22019" "C: \ \ Program Files \ \ SpeedBit Video Accelerator \ \ VideoAccelerator.exe" = "C: \ \ Program Files \ \ SpeedBit Video Accelerator \ \ VideoAccelerator.exe: *: Enabled: videom ccelerator" "C: \ \ Program Files \ \ SpeedBit Video Accelerator \ \ VideoAcceleratorEngine.exe" = "C: \ \ Prog ram Files \ \ SpeedBit Video Accelerator \ \ VideoAcceleratorEngine.exe: *: Enabled: VideoAcceleratorService" "C: \ \ Program Files \ \ Java \ \ jre1.6.0_05 \ \ bin \ \ javaw.exe" = "C: \ \ Na gram Files \ \ Java \ \ jre1.6.0_05 \ \ bin \ \ javaw. exe: *: Enabled: Java (TM) Platforma SE binárnou " "C: \ \ Program Files \ \ iTunes \ \ iTunes.exe" = "C: \ \ Program Files \ \ iTunes \ \ iTunes.exe: *: Enabled: iTunes" [HKEY_LOCAL_MACHINE \ SYSTEM \ CurrentControlSet \ Servic es \ sharedaccess \ Parameters \ firewallpolicy \ domainpr ofile \ authorizedapplications \ list] "% Windir% \ \ system32 \ \ Sessmgr.exe" = "% windir% \ \ system M32 \ \ Sessmgr.exe: *: Enabled: @ xpsp2res.dll, -22019" Zostávajúce súbory : Súbor Preddavky: - C: \ sdfix \ SDFix \ zálohovanie \ backups.zip Skryté súbory s atribútmi : Utorok 5. február 2008 4348 A.SH. --- "C: \ Documents and Settings \ All Users \ DRM \ DRMv1.bak" Pondelok 28. januára 2008 0 A.SH. --- "C: \ Documents and Settings \ All Users \ DRM \ Cache \ Indiv01.tmp" Hotovo! a Logfile Trend Micro HijackThis v2.0.2 Scan uložené v 10:48:43 dňa 05.04.2008 Platforma: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Zavádzacia mód: Normálny Bežiace procesy: C: \ WINDOWS \ System32 \ Smss.exe C: \ WINDOWS \ system32 \ Csrss.exe C: \ WINDOWS \ system32 \ Winlogon.exe C: \ WINDOWS \ system32 \ Services.exe C: \ WINDOWS \ system32 \ lsass.exe C: \ WINDOWS \ system32 \ Ati2evxx.exe C: \ WINDOWS \ system32 \ svchost.exe C: \ WINDOWS \ system32 \ svchost.exe C: \ WINDOWS \ system32 \ svchost.exe C: \ WINDOWS \ system32 \ svchost.exe C: \ WINDOWS \ system32 \ Ati2evxx.exe C: \ WINDOWS \ system32 \ svchost.exe C: \ WINDOWS \ system32 \ Spoolsv.exe C: \ Program Files \ AMD \ RAIDXpert \ mólo \ extra \ win32 \ Wrapper.exe C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe C: \ Program Files \ Grisoft \ AVG Anti-Spyware 7.5 \ guard.exe C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgamsvr.exe C: \ Program Files \ AMD \ RAIDXpert \ _jvm \ bin \ java.exe C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgupsvc.exe C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgemc.exe C: \ Program Files \ Bonjour \ mDNSResponder.exe C: \ Program Files \ Google \ Common \ Google Updater \ GoogleUpdaterService.exe C: \ Program Files \ SPAMfighter \ sfus.exe C: \ WINDOWS \ system32 \ svchost.exe C: \ WINDOWS \ system32 \ wltrysvc.exe C: \ WINDOWS \ system32 \ bcmwltry.exe C: \ WINDOWS \ Explorer.exe C: \ WINDOWS \ System32 \ alg.exe C: \ WINDOWS \ system32 \ wuauclt.exe C: \ WINDOWS \ system32 \ rundll32.exe C: \ Program Files \ btbb_wcm \ McciTrayApp.exe C: \ WINDOWS \ system32 \ wuauclt.exe C: \ WINDOWS \ system32 \ svchost.exe C: \ PROGRA ~ 1 \ Yahoo! \ Browser \ ybrwicon.exe C: \ PROGRA ~ 1 \ Yahoo! \ Browser \ ycommon.exe C: \ Program Files \ HP \ HP Software Update \ HPWuSchd2.exe C: \ Program Files \ Logitech \ MediaLife \ MediaLifeService.exe C: \ WINDOWS \ Samsung \ LaserSMMgr \ ssmmgr.exe C: \ PROGRA ~ 1 \ Yahoo! \ Yop \ yop.exe C: \ Program Files \ SPAMfighter \ SFAgent.exe C: \ Program Files \ BT Broadband Desktop Pomoc \ bin \ BTHelpNotifier.exe C: \ Program Files \ ATI Technologies \ ATI.ACE \ Core-Statické \ MOM.EXE C: \ WINDOWS \ system32 \ msiexec.exe C: \ WINDOWS \ system32 \ spool \ drivers \ w32x86 \ 3 \ hpztsb0 4.exe C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgcc.exe C: \ PROGRA ~ 1 \ MI948F ~ 1 \ GAMECO ~ 1 \ Common \ SWTrayV4.exe C: \ Program Files \ Microsoft IntelliType Pro \ itype.exe C: \ Program Files \ Microsoft IntelliPoint \ ipoint.exe C: \ Program Files \ Microsoft IntelliType Pro \ dpupdchk.exe C: \ PROGRA ~ 1 \ Yahoo! \ Yop \ SSDK02.exe C: \ Program Files \ Grisoft \ AVG Anti-Spyware 7.5 \ avgas.exe C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ jusched.exe C: \ WINDOWS \ system32 \ softvéru WBEM \ wmiprvse.exe C: \ Program Files \ iTunes \ iTunesHelper.exe C: \ WINDOWS \ system32 \ Ctfmon.exe C: \ Program Files \ Google \ GoogleToolbarNotifier \ GoogleToolbarNo tifier.exe C: \ Program Files \ iPod \ bin \ iPodService.exe C: \ Program Files \ DNA \ btdna.exe C: \ Program Files \ Messenger \ Msmsgs.exe C: \ Program Files \ SuperAntiSpyware \ SUPERAntiSpyware.exe C: \ Program Files \ BT Broadband Desktop Pomoc \ bin \ mpbtn.exe C: \ Program Files \ HP \ Digital Zobrazovacie \ bin \ hpqtra08.exe C: \ Program Files \ NETGEAR WG311v2 Adapter \ wlancfg5.exe C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ javaw.exe C: \ Program Files \ ATI Technologies \ ATI.ACE \ Core-Statické \ ccc.exe C: \ Program Files \ Trend Micro \ HijackThis \ HijackThis.exe C: \ WINDOWS \ system32 \ softvéru WBEM \ wmiprvse.exe R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://news.bbc.co.uk/sport1/hi/football/default.stm R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Bar = http://uk.red.clientapps.yahoo.com/c...o/bt_side.html R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Int ernet Nastavenia, ProxyOverride = 127.0.0.1; *. miestnej R3 - URLSearchHook: Yahoo! Toolbar - (EF99BD32-C1FB-11D2-892F-0090271D4F88) - C: \ Program Files \ Yahoo! \ Companion \ Inštalácia \ cpn0 \ yt.dll O2 - BHO: (bez názvu) - (3CAB59B4-55A3-4737-9FD5-B93C6430BF75) - C: \ WINDOWS \ system32 \ sjmxcfmu.dll O2 - BHO: SSVHelper triedy - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ ssv.dll O3 - Toolbar: Yahoo! Toolbar - (EF99BD32-C1FB-11D2-892F-0090271D4F88) - C: \ Program Files \ Yahoo! \ Companion \ Inštalácia \ cpn0 \ yt.dll O3 - Toolbar: & Google - (2318C2B1-4965-11D4-9B18-009027A5CD4F) - c: \ program files \ google \ googletoolbar1.dll O3 - Toolbar: Opýtajte Toolbar - (F0D4B239-DA4B-4daf-81E4-DFEE4931A4AA) - C: \ Program Files \ AskSBar \ bar \ 1.bin \ ASKSBAR.DLL O4 - HKLM \ .. \ Run: [C6501Sound] rundll32 c6501.cpl, CMICtrlWnd O4 - HKLM \ .. \ Run: [btbb_wcm_McciTrayApp] C: \ Program Files \ btbb_wcm \ McciTrayApp.exe O4 - HKLM \ .. \ Run: [YBrowser] C: \ PROGRA ~ 1 \ Yahoo! \ Browser \ ybrwicon.exe O4 - HKLM \ .. \ Run: [HPHUPD08] C: \ Program Files \ HP \ Digital Zobrazovacie \ (33D6CC28-9F75-4d1b-A11D-98895B3A3729) \ hphupd08.exe O4 - HKLM \ .. \ Run: [HP Software Update] C: \ Program Files \ HP \ HP Software Update \ HPWuSchd2.exe O4 - HKLM \ .. \ Run: [MediaLifeService] "C: \ Program Files \ Logitech \ MediaLife \ MediaLifeService.exe" O4 - HKLM \ .. \ Run: [Samsung LBP SM] "C: \ WINDOWS \ Samsung \ LaserSMMgr \ ssmmgr.exe" / autorun O4 - HKLM \ .. \ Run: [Yop] C: \ PROGRA ~ 1 \ Yahoo! \ Yop \ yop.exe / autostart O4 - HKLM \ .. \ Run: [SPAMfighter Agent] "C: \ Program Files \ SPAMfighter \ SFAgent.exe" update meškanie 60 O4 - HKLM \ .. \ Run: [btbb_McciTrayApp] C: \ Program Files \ BT Broadband Desktop Pomoc \ bin \ BTHelpNotifier.exe O4 - HKLM \ .. \ Run: [StartCCC] "C: \ Program Files \ ATI Technologies \ ATI.ACE \ Core-Statické \ CLIStart.exe" O4 - HKLM \ .. \ Run: [amd_dc_opt] C: \ Program Files \ AMD \ dvoch-malvicové optimalizáciu \ amd_dc_opt.exe O4 - HKLM \ .. \ Run: [HPDJ paneli Utility] C: \ WINDOWS \ system32 \ spool \ drivers \ w32x86 \ 3 \ hpztsb0 4.exe O4 - HKLM \ .. \ Run: [AVG7_CC] C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgcc.exe / StartUp O4 - HKLM \ .. \ Run: [SideWinderTrayV4] C: \ PROGRA ~ 1 \ MI948F ~ 1 \ GAMECO ~ 1 \ Common \ SWTrayV4.exe O4 - HKLM \ .. \ Run: [itype] "C: \ Program Files \ Microsoft IntelliType Pro \ itype.exe" O4 - HKLM \ .. \ Run: [IntelliPoint] "C: \ Program Files \ Microsoft IntelliPoint \ ipoint.exe" O4 - HKLM \ .. \ Run: [! AVG Anti-Spyware] "C: \ Program Files \ Grisoft \ AVG Anti-Spyware 7.5 \ avgas.exe" / minimalizovaného O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] "C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ jusched.exe" O4 - HKLM \ .. \ Run: [QuickTime Úloha] "C: \ Program Files \ QuickTime \ QTTask.exe"-atboottime O4 - HKLM \ .. \ Run: [iTunesHelper] "C: \ Program Files \ iTunes \ iTunesHelper.exe" O4 - HKCU \ .. \ Run: [Cttfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe O4 - HKCU \ .. \ Run: [SWG] C: \ Program Files \ Google \ GoogleToolbarNotifier \ GoogleToolbarNo tifier.exe O4 - HKCU \ .. \ Run: [Bittorrent DNA] "C: \ Program Files \ DNA \ btdna.exe" O4 - HKCU \ .. \ Run: [MSMSGS] "C: \ Program Files \ Messenger \ Msmsgs.exe" / pozadia O4 - HKCU \ .. \ Run: [SuperAntiSpyware] C: \ Program Files \ SuperAntiSpyware \ SUPERAntiSpyware.exe O4 - HKUS \ S-1-5-19 \ .. \ Run: [Cttfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe (User 'miestnych') O4 - HKUS \ S-1-5-19 \ .. \ Run: [AVG7_Run] C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgw.exe / RunOnce (User 'miestnych') O4 - HKUS \ S-1-5-20 \ .. \ Run: [Cttfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe (User 'Network Service') O4 - HKUS \ S-1-5-18 \ .. \ Run: [Cttfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe (User 'systém') O4 - HKUS \. DEFAULT \ .. \ Run: [Cttfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe (User 'Predvolené užívateľ') O4 - spustenie: MP3 Rocket (minimized). Lnk = C: \ Program Files \ MP3 Rocket \ MP3Rocket.exe O4 - Global spustení: BT Broadband Desktop Help.lnk = C: \ Program Files \ BT Broadband Desktop Pomoc \ bin \ matcli.exe O4 - Global spustení: HP Digital Zobrazovacie Monitor.lnk = C: \ Program Files \ HP \ Digital Zobrazovacie \ bin \ hpqtra08.exe O4 - Global spustení: WG311v2 NETGEAR Smart Configuration.lnk = C: \ Program Files \ NETGEAR WG311v2 Adapter \ wlancfg5.exe O8 - Extra kontextového menu položku: & Čistý Traces - C: \ Program Files \ DAP \ Súkromie balík \ dapcleanerie.htm O8 - Extra kontextového menu položku: & Stiahnuť pomocou & DAP - C: \ Program Files \ DAP \ dapextie.htm O8 - Extra kontextového menu položku: Download & all s DAP - C: \ Program Files \ DAP \ dapextie2.htm O9 - Extra tlačidlá: (bez názvu) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0_05 \ bin \ ssv.dll O9 - Extra tlačidlá: BT Yahoo! Services - (5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897) - C: \ PROGRA ~ 1 \ Yahoo! \ Common \ yiesrvc.dll O9 - Extra tlačidlá: Messenger - (FB5F1910-F110-11D2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ Msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - (FB5F1910-F110-11D2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ Msmsgs.exe O16 - DPF: (17492023-C23A-453E-A040-C7C580BBF700) (Windows Genuine Advantage validáciu Tool) -- http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: (30528230-99f7-4bb4-88d8-fa1d4f56a2ab) (Inštalácia Support) - C: \ Program Files \ Yahoo! \ Common \ Yinsthelper20073151.dll O16 - DPF: (6F15128C-E66A-490C-B848-5000B5ABEEAC) (HP Download Manager) -- https: / / h20436.www2.hp.com/ediags/de...e/HPDEXAXO.cab O16 - DPF: (BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B) (Zylom Hry Player) -- http://game07.zylom.com/activex/zylomgamesplayer.cab O16 - DPF: (D27CDB6E-AE6D-11CF-96B8-444553540000) (Shockwave Flash Object) -- http://fpdownload2.macromedia.com/ge...nt/swflash.cab O20 - Winlogon Upozornenie:! SASWinLogon - C: \ Program Files \ SuperAntiSpyware \ SASWINLO.dll O20 - Winlogon Upozornenie: tuvsqpq - tuvsqpq.dll (súbor chýba) O20 - Winlogon Upozornenie: yaywuvw - yaywuvw.dll (súbor chýba) O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C: \ Program Files \ Lavasoft \ Ad-Aware 2007 \ aawservice.exe O23 - Service: AMD RAIDXpert (AMDRAIDXpert) - Neznámy vlastník - C: \ Program Files \ AMD \ RAIDXpert \ mólo \ extra \ win32 \ Wrapper.exe O23 - Service: Apple Mobile Device - Apple, Inc - C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc - C: \ WINDOWS \ system32 \ Ati2evxx.exe O23 - Service: ATI Smart - Neznámy vlastník - C: \ WINDOWS \ system32 \ ati2sgag.exe O23 - Service: AVG Anti-Spyware garda - GRISOFT sro - C: \ Program Files \ Grisoft \ AVG Anti-Spyware 7.5 \ guard.exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, sro - C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, sro - C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgupsvc.exe O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, sro - C: \ PROGRA ~ 1 \ Grisoft \ AVG7 \ avgemc.exe O23 - Service: Bonjour Service - Apple Inc - C: \ Program Files \ Bonjour \ mDNSResponder.exe O23 - Service: Google Updater Service (gusvc) - Google - C: \ Program Files \ Google \ Common \ Google Updater \ GoogleUpdaterService.exe O23 - Service: InstallDriver Tabuľka Manager (IDriverT) - Macrovision Corporation - C: \ Program Files \ Common Files \ InstallShield \ Driver \ 11 \ Intel 32 \ IDriverT.exe O23 - Service: iPod Service - Apple Inc - C: \ Program Files \ iPod \ bin \ iPodService.exe O23 - Service: PML Driver HPZ12 - Neznámy vlastník - C: \ WINDOWS \ system32 \ HPZipm12.exe (file chýba) O23 - Service: Update Service SPAMfighter - SPAMfighter ApS - C: \ Program Files \ SPAMfighter \ sfus.exe O23 - Service: WLTRYSVC - Neznámy vlastník - C: \ WINDOWS \ system32 \ wltrysvc.exe O23 - Service: YPCService - Yahoo! Inc - C: \ WINDOWS \ system32 \ YPCSER ~ 1.EXE -- Koniec súboru - 11044 bytes |
|
| |
| Záložky |
Podobné témy | ||||
| Nitka | Thread Odľahčenú | Fórum | Odpovede | Posledný príspevok |
| Pomalší internet rýchlosťou večer na kábel | kojowilliams | Siete, Modemy & VoIP | 1 | 25. mája 2009 14:18 |
| Rýchly hry zlepšuje zručnosti pre pomalší pohyblivé hry! | NeuroDrive | PC a herné konzoly | 1 | 4. februára 2009 04:19 |
| PC pomalší ako najpomalší vec na svete! | hlien | Virus, spyware a bezpečnosť | 40 | 20. novembra 2008 06:35 |
| Sú vonkajšie hardrives pomalší ako vnútorné? | dubs89 | Drives & Removable Media | 3 | 29. decembra 2007 14:05 |
| Thread Tools | |
| |
