|
|
#1
24. októbra 2008, 16:18
|
|||
|
|||
Trojan
Mám Trojan na mojom PC v System32 súbory. Mám AVG, ale len divil, ako sa zbaviť ju z AVG ako keď som kliknite odstrániť, myslím, že to prostě vymaže z trezoru až do budúceho scan, keď je nájdený znova.
|
|
#2
24. októbra 2008, 16:24
|
||||||||||||
|
||||||||||||
|
Trojan
Sa zdá, ako ste vy, budú musieť urobiť viac ako len snaží vymazať s AVG, pokúste sa pozornosť toto vlákno.
__________________
Môj systém: Prvé OC
|
|
#3
25. októbra 2008, 04:17
|
|||
|
|||
|
Trojan
Ok, děkuji. I poběží uniesť to zajtra:)
|
|
#4
25. októbra 2008, 10:08
|
|||
|
|||
|
Trojan
Spustite všetky z skenuje a post tyčinky. HijackThis zvyčajne nestačí.
__________________
 |
|
#5
26 októbra 2008, 15:58
|
|||
|
|||
|
Trojan
Jsem běžel SuperAntiSpyware a dostal sa prihlásiť. Tiež som běžel AVG ešte raz a prišiel až na šesť miest, že Trojan bol infikovaný.
To je SuperAntiSpyware denník: SuperAntiSpyware Scan Prihlásenie http://www.superantispyware.com Generated 10.26.2008 v 08:30 hodín Verzia aplikácie: 4.21.1004 Pravidlá databázy Core Version: 3609 Stopový Pravidlá databázy Version: 1595 Vyhľadávať typ: Kompletná Scan Celkom Scan Time: 00:59:08 Memory položiek testovány: 430 Memory ohrozenia odhalené: 0 Položky databázy Registry skenovaná: 4950 Registre ohrozenia odhalené: 0 Súbor položiek skenovaná: 73876 Súbor zistených ohrozenia: 77 Trojan.Unknown pôvodu C: \ WINDOWS \ mslagent \ 2_mslagent.dll C: \ WINDOWS \ mslagent \ mslagent.exe C: \ WINDOWS \ mslagent \ uninstall.exe C: \ WINDOWS \ mslagent C: \ WINDOWS \ system32 \ SMP \ msrc.exe C: \ WINDOWS \ system32 \ SMP Adware.INetDelivery C: \ Program Files \ Inet Dodacia \ inetdl.exe C: \ Program Files \ Inet Dodacia \ intdel.exe C: \ Program Files \ Inet Dodanie C: \ Program Files \ AKL \ akl.dll C: \ Program Files \ AKL \ akl.exe C: \ Program Files \ AKL \ uninstall.exe C: \ Program Files \ AKL \ unsetup.exe C: \ Program Files \ AKL Trojan.Fake-Drop/Gen C: \ WINDOWS \ SYSTEM32 \ VBSYS2.DLL C: \ WINDOWS \ SYSTEM32 \ AWTOOLB.DLL C: \ WINDOWS \ SYSTEM32 \ SYSREQ.EXE C: \ WINDOWS \ SYSTEM32 \ WINWGPX.EXE C: \ WINDOWS \ SYSTEM32 \ BDN.COM C: \ WINDOWS \ SYSTEM32 \ MSSECU.EXE C: \ WINDOWS \ SYSTEM32 \ VCATCHPI.DLL C: \ WINDOWS \ SYSTEM32 \ AKTTZN.EXE C: \ WINDOWS \ SYSTEM32 \ WINSYSTEM.EXE C: \ WINDOWS \ SYSTEM32 \ NEWSD32.EXE C: \ WINDOWS \ SYSTEM32 \ EMESX.DLL C: \ WINDOWS \ SYSTEM32 \ RUNDL1.EXE C: \ WINDOWS \ SYSTEM32 \ ANTICIPATOR.DLL C: \ WINDOWS \ SYSTEM32 \ THUN.DLL C: \ WINDOWS \ SYSTEM32 \ THUN32.DLL C: \ WINDOWS \ SYSTEM32 \ MSVCHOST.EXE C: \ WINDOWS \ SYSTEM32 \ REGC64.DLL C: \ WINDOWS \ SYSTEM32 \ REGM64.DLL C: \ WINDOWS \ SYSTEM32 \ SSVCHOST.COM C: \ WINDOWS \ SYSTEM32 \ SSVCHOST.EXE C: \ WINDOWS \ SYSTEM32 \ TEMP # 01.EXE C: \ WINDOWS \ SYSTEM32 \ MSGP.EXE C: \ WINDOWS \ SYSTEM32 \ MTR2.EXE C: \ WINDOWS \ SYSTEM32 \ H @ @ @ TKEYSH K. DLL C: \ WINDOWS \ SYSTEM32 \ NETODE.EXE C: \ WINDOWS \ SYSTEM32 \ MEDUP012.DLL C: \ WINDOWS \ SYSTEM32 \ MEDUP020.DLL C: \ WINDOWS \ SYSTEM32 \ SSURF022.DLL C: \ WINDOWS \ SYSTEM32 \ MSNBHO.DLL C: \ WINDOWS \ SYSTEM32 \ BSVA-EGIHSG52.EXE C: \ WINDOWS \ SYSTEM32 \ PS1.EXE C: \ WINDOWS \ SYSTEM32 \ HXIWLGPM.DAT C: \ WINDOWS \ SYSTEM32 \ HXIWLGPM.EXE C: \ WINDOWS \ SYSTEM32 \ TAACK.DAT C: \ WINDOWS \ SYSTEM32 \ TAACK.EXE C: \ WINDOWS \ SYSTEM32 \ MWIN32.EXE C: \ WINDOWS \ SYSTEM32 \ VBIEWER.OCX C: \ WINDOWS \ SYSTEM32 \ HOPROXY.DLL C: \ WINDOWS \ SYSTEM32 \ WINLOGONPC.EXE C: \ WINDOWS \ BDN.COM C: \ WINDOWS \ MSSECU.EXE C: \ WINDOWS \ WINSYSTEM.EXE C: \ WINDOWS \ ITUNESMUSIC.EXE C: \ WINDOWS \ A. BAT C: \ WINDOWS \ BASE64.TMP C: \ WINDOWS \ FVPROTECT.EXE C: \ WINDOWS \ USERCONFIG9X.DLL C: \ WINDOWS \ ZIP1.TMP C: \ WINDOWS \ ZIP2.TMP C: \ WINDOWS \ ZIP3.TMP C: \ WINDOWS \ ZIPPED.TMP Dpcproxy C: \ WINDOWS \ SYSTEM32 \ DPCPROXY.EXE Unclassified.Unknown pôvodu / System C: \ WINDOWS \ SYSTEM32 \ PSOF1.EXE Adware.Pacer D C: \ WINDOWS \ SYSTEM32 \ PSOFT1.EXE Trojan.Dluca-I C: \ WINDOWS \ SYSTEM32 \ SNCNTR.EXE Adware.Vundo-Variant / J C: \ WINDOWS \ QRBGLTOS.DLL Trojan.Net-MSV/VPS-Variant C: \ WINDOWS \ GRFXBANOMOK.DLL Adware.180solutions/Seekmo/Zango C: \ Documents and Settings \ GUEST \ DESKTOP \ SETUP.EXE Adware.Tracking Cookie C: \ Documents and Settings \ Guest \ Cookies \ @ hosť DoubleClick [2]. Txt C: \ Documents and Settings \ Guest \ Cookies \ @ hosť slúžiace sys-[2]. Txt C: \ Documents and Settings \ Guest \ Cookies \ @ hosť atdmt [2]. Txt C: \ Documents and Settings \ Guest \ Cookies \ @ hosť TradeDoubler [2]. Txt C: \ Documents and Settings \ Guest \ Cookies \ guest@bs.serving-sys [2]. Txt |
|
#6
26 októbra 2008, 16:11
|
|||
|
|||
|
Trojan
MalwareByres Prihlásenie:
Malwarebytes' Anti-Malware 1.30 Verzia databázy: 1324 Windows 5.1.2600 Service Pack 2 26/10/2008 23:09:02 mbam-log-2008-10-26 (23-09-02). txt Vyhľadávať typ: Quick Scan Objekty skenovanej: 52045 Doba letu: 4 minút (y) 36 sekúnd (y) Pamäťové procesy Infikovaná: 0 Infikované pamäťové moduly: 0 Infikované kľúče databázy Registry: 0 Infikované hodnoty databázy Registry: 0 Infikované položky dat registru: 0 Infikované zložky: 1 Infikované súbory: 1 Infikované pamäťové procesy: (Žiadne položky zistený škodlivý) Infikované pamäťové moduly: (Žiadne položky zistený škodlivý) Infikované kľúče databázy Registry: (Žiadne položky zistený škodlivý) Infikované hodnoty databázy Registry: (Žiadne položky zistený škodlivý) Infikované položky údajov databázy Registry: (Žiadne položky zistený škodlivý) Infikované zložky: C: \ Documents and Settings \ Guest \ Local Settings \ temp \ ac8zt2 (Trojan.FakeAlert) -> Karantény a úspešne vymazaná. Infikované súbory: C: \ WINDOWS \ egsf.exe (Trojan.FakeAlert) -> karanténe a úspešne vymazaná. |
|
#7
26 októbra 2008, 17:27
|
|||
|
|||
|
Trojan
Potrebovať HijackThis log hned
__________________
|
|
#8
27 októbra 2008, 14:27
|
|||
|
|||
|
Trojan
Citácia:
|
|
#9
27 októbra 2008, 14:35
|
|||
|
|||
|
Trojan
Prosím, len pokračujte vysielania záznamy v prípade, že potrebujete pomoc.
__________________
|
|
#10
27 októbra 2008, 16:03
|
|||
|
|||
|
Trojan
Logfile Trend Micro HijackThis v2.0.2
Scan uložené v 23:01:07 dňa 27/10/2008 Platforma: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16735) Zavádzacia mód: Normálny Bežiace procesy: C: \ WINDOWS \ System32 \ Smss.exe C: \ WINDOWS \ system32 \ Winlogon.exe C: \ WINDOWS \ system32 \ Services.exe C: \ WINDOWS \ system32 \ lsass.exe C: \ WINDOWS \ system32 \ svchost.exe C: \ WINDOWS \ system32 \ svchost.exe C: \ WINDOWS \ system32 \ Spoolsv.exe C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe C: \ PROGRA ~ 1 \ AVG \ AVG8 \ avgwdsvc.exe C: \ Program Files \ WIDCOMM \ Bluetooth Software \ bin \ btwdins.exe C: \ Program Files \ Java \ jre6 \ bin \ jqs.exe C: \ WINDOWS \ system32 \ svchost.exe C: \ WINDOWS \ Explorer.exe C: \ PROGRA ~ 1 \ AVG \ AVG8 \ avgrsx.exe C: \ Program Files \ Cyberlink \ PowerDVD \ PDVDServ.exe C: \ WINDOWS \ SOUNDMAN.EXE C: \ Acer \ Empowering Technology \ eRecovery \ Monitor.exe C: \ Program Files \ Java \ jre6 \ bin \ jusched.exe C: \ Program Files \ BroadJump \ Client nadácie \ CFD.exe C: \ Program Files \ Panny Broadband \ poradca \ Broadbandadvisor.exe C: \ Program Files \ TextBridge Pre Millennium \ bin \ InstantAccess.exe C: \ Program Files \ Common Files \ Real \ Update_OB \ realsched.exe C: \ Program Files \ iTunes \ iTunesHelper.exe C: \ PROGRA ~ 1 \ AVG \ AVG8 \ avgtray.exe C: \ WINDOWS \ sm56hlpr.exe C: \ Program Files \ Google \ GoogleToolbarNotifier \ GoogleToolbarNo tifier.exe C: \ WINDOWS \ system32 \ Ctfmon.exe C: \ WINDOWS \ system32 \ sistray.exe C: \ Program Files \ WIDCOMM \ Bluetooth Software \ BTTray.exe C: \ Program Files \ Ulead systémy \ Ulead Foto Express 3.0 SE \ CalCheck.exe C: \ Program Files \ iPod \ bin \ iPodService.exe C: \ Program Files \ Trust \ Easy Webscan 19200 \ ScanPanel \ ScnPanel.exe C: \ Program Files \ FinePixViewerS \ QuickDCF2.exe C: \ PROGRA ~ 1 \ WIDCOMM \ BlueT ~ 1 \ BTSTAC ~ 1.EXE C: \ WINDOWS \ system32 \ wuauclt.exe C: \ Program Files \ HijackThis \ Analyse.exe.exe R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.google.co.uk/ R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://global.acer.com R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Bar = http://us.rd.yahoo.com/customize/ie/...ch/search.html R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Int ernet Nastavenia, ProxyOverride = *. miestnej O2 - BHO: AcroIEHlprObj triedy - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files \ Adobe \ Acrobat 7.0 \ ActiveX \ AcroIEHelper.dll O2 - BHO: StumbleUpon Launcher - (145B29F4-A56B-4b90-BBAC-45784EBEBBB7) - C: \ Program Files \ StumbleUpon \ StumbleUponIEBar.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - (3CA2F312-6F6E-4B53-A66E-4E65E497C8C0) - C: \ Program Files \ AVG \ AVG8 \ avgssie.dll O2 - BHO: Java (tm) Plug-In SSV Helper - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Program Files \ Java \ jre6 \ bin \ ssv.dll O2 - BHO: Windows Live Sign-in Helper - (9030D464-4C02-4ABF-8ECC-5164760863C6) - C: \ Program Files \ Common Files \ Microsoft Shared \ Windows Live \ WindowsLiveLogin.dll O2 - BHO: AVG bezpečnosti Toolbar - (A057A204-BACC-4D26-9990-79A187E2698E) - C: \ PROGRA ~ 1 \ AVG \ AVG8 \ AVGTOO ~ 1.DLL O2 - BHO: Google Toolbar Helper - (AA58ED58-01DD-4d91-8333-CF10577473F7) - c: \ program files \ google \ googletoolbar1.dll O2 - BHO: Google Toolbar Notifier BHO - (AF69DE43-7D58-4638-B6FA-CE66B5AD205D) - C: \ Program Files \ Google \ GoogleToolbarNotifier \ 3.1.807.1746 \ sw g.dll O2 - BHO: Java (tm) Plug-In 2 SSV Helper - (DBC80044-A445-435b-BC74-9C25C1C588A9) - C: \ Program Files \ Java \ jre6 \ bin \ jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - (E7E6F031-17CE-4C07-BC86-EABFE594F69C) - C: \ Program Files \ Java \ jre6 \ lib \ nasadiť \ jqs \ tj \ jqs_plugin.dll O2 - BHO: EpsonToolBandKicker triedy - (E99421FB-68DD-40F0-B4AC-B7027CAE2F1A) - C: \ Program Files \ EPSON \ EPSON Web-To-Page \ EPSON Web-To-Page.dll O3 - Toolbar: & Google - (2318C2B1-4965-11D4-9B18-009027A5CD4F) - c: \ program files \ google \ googletoolbar1.dll O3 - Toolbar: EPSON Web-To-Page - (EE5D279F-081B-4404-994D-C6B60AAEBA6D) - C: \ Program Files \ EPSON \ EPSON Web-To-Page \ EPSON Web-To-Page.dll O3 - Toolbar: StumbleUpon Toolbar - (5093EB4C-3E93-40AB-9266-B607BA87BDC8) - C: \ Program Files \ StumbleUpon \ StumbleUponIEBar.dll O3 - Toolbar: AVG bezpečnosti Toolbar - (A057A204-BACC-4D26-9990-79A187E2698E) - C: \ PROGRA ~ 1 \ AVG \ AVG8 \ AVGTOO ~ 1.DLL O4 - HKLM \ .. \ Run: [LaunchApp] Alaunch O4 - HKLM \ .. \ Run: [ntiMUI] C: \ Program Files \ Newt Infosystems \ PATRENIA CD & DVD-Maker 7 \ ntiMUI.exe O4 - HKLM \ .. \ Run: [RemoteControl] "C: \ Program Files \ Cyberlink \ PowerDVD \ PDVDServ.exe" O4 - HKLM \ .. \ Run: [IMJPMIG8.1] "C: \ WINDOWS \ IME \ imjp8_1 \ IMJPMIG.EXE" / korisť / RemAdvDef / Migration32 O4 - HKLM \ .. \ Run: [MSPY2002] C: \ WINDOWS \ system32 \ IME \ PINTLGNT \ ImScInst.exe / SYNC O4 - HKLM \ .. \ Run: [PHIME2002ASync] C: \ WINDOWS \ system32 \ IME \ TINTLGNT \ TINTSETP.EXE / SYNC O4 - HKLM \ .. \ Run: [PHIME2002A] C: \ WINDOWS \ system32 \ IME \ TINTLGNT \ TINTSETP.EXE / IMEName O4 - HKLM \ .. \ Run: [SiSPower] rundll32.exe SiSPower.dll, ModeAgent O4 - HKLM \ .. \ Run: [SoundMan] SOUNDMAN.EXE O4 - HKLM \ .. \ Run: [eRecoveryService] C: \ Acer \ Empowering Technology \ eRecovery \ Monitor.exe O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] "C: \ Program Files \ Java \ jre6 \ bin \ jusched.exe" O4 - HKLM \ .. \ Run: [BJCFD] C: \ Program Files \ BroadJump \ Client nadácie \ CFD.exe O4 - HKLM \ .. \ Run: [Broadbandadvisor.exe] "C: \ Program Files \ Panny Broadband \ poradca \ Broadbandadvisor.exe" / AutoRun O4 - HKLM \ .. \ Run: [InstantAccess] C: \ Program Files \ TextBridge Pre Millennium \ bin \ InstantAccess.exe / h O4 - HKLM \ .. \ Run: [TkBellExe] "C: \ Program Files \ Common Files \ Real \ Update_OB \ realsched.exe"-osboot O4 - HKLM \ .. \ Run: [QuickTime Úloha] "C: \ Program Files \ QuickTime \ qttask.exe"-atboottime O4 - HKLM \ .. \ Run: [iTunesHelper] "C: \ Program Files \ iTunes \ iTunesHelper.exe" O4 - HKLM \ .. \ Run: [AVG8_TRAY] C: \ PROGRA ~ 1 \ AVG \ AVG8 \ avgtray.exe O4 - HKLM \ .. \ Run: [SMSERIAL] sm56hlpr.exe O4 - HKCU \ .. \ Run: [MsnMsgr] "C: \ Program Files \ MSN Messenger \ MsnMsgr.Exe" / pozadia O4 - HKCU \ .. \ Run: [SWG] C: \ Program Files \ Google \ GoogleToolbarNotifier \ GoogleToolbarNo tifier.exe O4 - HKCU \ .. \ Run: [Cttfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe O4 - HKUS \ S-1-5-18 \ .. \ Run: [Cttfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe (User 'systém') O4 - HKUS \. DEFAULT \ .. \ Run: [Cttfmon.exe] C: \ WINDOWS \ system32 \ Ctfmon.exe (User 'Predvolené užívateľ') O4 - spustenie: Kometa Screensaver.lnk = C: \ Program Files \ Comet Screensaver \ Comet Screensaver.exe O4 - spustenie: IMVU.lnk = C: \ Program Files \ IMVU \ IMVUClient.exe O4 - spustenie: Príslušenstvo O4 - Global spustení: Adobe Reader Speed Launch.lnk = C: \ Program Files \ Adobe \ Acrobat 7.0 \ Reader \ reader_sl.exe O4 - Global spustení: Utility Tray.lnk = C: \ WINDOWS \ system32 \ sistray.exe O4 - Global spustení: Bluetooth.lnk =? O4 - Global spustení: Ulead Foto Express 3.0 SE Kalendár Checker.lnk = C: \ Program Files \ Ulead systémy \ Ulead Foto Express 3.0 SE \ CalCheck.exe O4 - Global spustení: ScanPanel.lnk = C: \ Program Files \ Trust \ Easy Webscan 19200 \ ScanPanel \ ScnPanel.exe O4 - Global spustení: Exif Launcher S.lnk =? O4 - Global spustení: Adobe Gamma Loader.lnk = C: \ Program Files \ Common Files \ Adobe \ Kalibračná \ Adobe Gamma Loader.exe O8 - Extra kontextového menu položku: & Pridať na Windows Live Obľúbené -- http://favorites.live.com/quickadd.aspx O8 - Extra kontextového menu položku: E & xportovať do programu Microsoft Excel - res: / / C: \ PROGRA ~ 1 \ micros ~ 2 \ Office11 \ EXCEL.EXE/3000 O8 - Extra kontextového menu položku: Send to & Bluetooth - C: \ Program Files \ Belkin \ Bluetooth Software \ btsendto_ie_ctx.htm O8 - Extra kontextového menu položku: Send to & Bluetooth zariadenia ... - C: \ Program Files \ WIDCOMM \ Bluetooth Software \ btsendto_ie_ctx.htm O8 - Extra kontextového menu položku: Fotoblog StumbleUpon It! - Res: / / StumbleUponIEBar.dll / blogimage O9 - Extra tlačidlá: StumbleUpon - (75C9223A-409A-4795-A3CA-08DE6B075B4B) - C: \ Program Files \ StumbleUpon \ StumbleUponIEBar.dll O9 - Extra tlačidlá: Výskum - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ PROGRA ~ 1 \ micros ~ 2 \ Office11 \ REFIEBAR.DLL O9 - Extra tlačidlá: @ btrez.dll, -4015 - (CCA281CA-C863-46ef-9331-5C8D4460577F) - C: \ Program Files \ WIDCOMM \ Bluetooth Software \ btsendto_ie.htm O9 - Extra 'Tools' MENUITEM: @ btrez.dll, -12650 - (CCA281CA-C863-46ef-9331-5C8D4460577F) - C: \ Program Files \ WIDCOMM \ Bluetooth Software \ btsendto_ie.htm O9 - Extra tlačidlá: (bez názvu) - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostické \ xpnetdiag.exe O9 - Extra 'Tools' MENUITEM: @ xpsp3res.dll, -20001 - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostické \ xpnetdiag.exe O9 - Extra tlačidlá: Messenger - (FB5F1910-F110-11D2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ Msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - (FB5F1910-F110-11D2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ Msmsgs.exe O16 - DPF: (20A60F0D-9AFA-4515-A0FD-83BD84642501) (Dáma trieda) -- http://messenger.zone.msn.com/binary...r.cab56986.cab O16 - DPF: (30528230-99f7-4bb4-88d8-fa1d4f56a2ab) (YInstStarter Class) - C: \ Program Files \ Yahoo! \ Common \ yinsthelper.dll O16 - DPF: (48DD0448-9209-4F81-9F6D-D83562940134) (MySpace Uploader Control) -- http://lads.myspace.com/upload/MySpaceUploader1006.cab O16 - DPF: (4F1E5B1A-2A80-42CAA-8532-2D05CB959537) (MSN Foto Upload Tool) -- http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab O16 - DPF: (5C051655-FCD5-4969-9182-770EA5AA5565) (Solitaire skúška Class) -- http://messenger.zone.msn.com/binary...n.cab56986.cab O16 - DPF: (5D6F45B3-9043-443D-A792-115447494D24) (UnoCtrl Class) -- http://messenger.zone.msn.com/EN-GB/.../GAME_UNO1.cab O16 - DPF: (6414512B-B978-451D-A0D8-FCFDF33E833C) (WUWebControl Class) -- http://update.microsoft.com/windowsu...?1177956484625 O16 - DPF: (C3F79A2B-B9B4-4A66-B012-3EE46475B072) (MessengerStatsClient Class) -- http://messenger.zone.msn.com/binary...t.cab56907.cab O16 - DPF: (F5A7706B-B9C0-4C89-A715-7A0C6B05DD48) (Minesweeper Flags Class) -- http://messenger.zone.msn.com/binary...r.cab56986.cab O18 - Protokol: linkscanner - (F274614C-63F8-47D5-A4D1-FBDDE494F8D1) - C: \ Program Files \ AVG \ AVG8 \ avgpp.dll O20 - AppInit_DLLs: avgrsstx.dll O20 - Winlogon Upozornenie:! SASWinLogon - C: \ Program Files \ SuperAntiSpyware \ SASWINLO.dll O23 - Service: Apple Mobile Device - Apple, Inc - C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technológia CZ, sro - C: \ PROGRA ~ 1 \ AVG \ AVG8 \ avgwdsvc.exe O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C: \ Program Files \ WIDCOMM \ Bluetooth Software \ bin \ btwdins.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd - C: \ Program Files \ Common Files \ Macrovision Shared \ FLEXnet Nakladateľ \ FNPLicensingService.exe O23 - Service: Google Updater Service (gusvc) - Google - C: \ Program Files \ Google \ Common \ Google Updater \ GoogleUpdaterService.exe O23 - Service: iPod Service - Apple Inc - C: \ Program Files \ iPod \ bin \ iPodService.exe O23 - Service: Java Quick Odľahčenú (JavaQuickStarterService) - Sun Microsystems, Inc - C: \ Program Files \ Java \ jre6 \ bin \ jqs.exe -- Koniec súboru - 11086 bytes Myslím, že Trojan (y) si prišiel od mojej sestry sťahovanie hier pre ňu telefón, nie som si istý, ale nie ste infikující obnovenie teraz. |
