CentrumXP Forum Tematyka portalu CentrumXP.pl Bezpieczeństwo trojan Monit przy otwarciu systemu

trojan Monit przy otwarciu systemu

Ostatnio cos dostalo sie do mojego kompa. Jak odpalam to pojawia sie monit od Kasperskiego ze jakis plik w temp chce sciagnac trojana wykryto: Koń trojański Trojan.Win32.BHO.g URL: http://82.98.235.61/nauj/kungfu20070418.dll?uid=9FE71C9AF1E311DBBB84003048895BFC&guid=984689d2+26AF246BEB0B45B39FC341353D875A23 wykryto: adware not-a-virus:AdWare.Win32.Virtumonde.hb URL: http://82.98.235.61/ffa/ffa_mv20070411.dll?uid=9FE71C9AF1E311DBBB84003048895BFC&guid=984689d2+26AF246BEB0B45B39FC341353D875A23 usunięto: adware not-a-virus:AdWare.Win32.Virtumonde.hb Plik: C:\DOCUME~1\admin\USTAWI~1\Temp\kcqbwiad.dll No i pomimo tego ze to usune za kazdym razem sie odpala przy starcie. Zrobilem pelen skan systemu ale nic nie znalazlo. Tak samo ad aware i spybot s&d Co robic

Odpowiedzi: 4

Dzieki za pomoc Juz jest dobrze
surtoip
Dodano
06.05.2007 15:28:24
[quote]2007-04-24 18:51 d-------- C:\86596187e9912b27b6efa912652195[/quote] Nie wiem, co to za "numerkowiec" - prawdopodobnie to jakiś program multimedialny go utworzył, ale na wszelki wypadek sprawdź go: najedź myszką i zobacz, jaka firma, albo prawoklik i we "właściwościach" zobacz, co tam napisane, może uda się skojarzyć z jakimś znanym Ci programem multimedialnym. Jeśli nie, to możesz usunąć. Ogólnie jest dobrze, czysto. .
morda
Dodano
30.04.2007 22:48:22
Dzieki serdeczne za pomoc. To bylo to. Bylo trudno ale udalo sie usunac wszystko dzieki temu programowi. Bylo duzo plikow ktore nie chcialy sie usuwac ale jakos mi sie udalo je wyrzucic. Oto log: "admin" - 07-04-30 20:03:54 Dodatek Service Pack 2 ComboFix 07-04-25.4V - Running from: "C:\downloads\" ((((((((((((((((((((((((((((((( Files Created from 2007-03-28 to 2007-04-30 )))))))))))))))))))))))))))))))))) 2007-04-30 16:20 94,208 --a------ C:\WINDOWS\system32\DisplayCPP11.dll 2007-04-30 16:20 90,112 --a------ C:\WINDOWS\system32\IntelMobileWrapper11.dll 2007-04-30 16:20 880,640 --a------ C:\WINDOWS\system32\IntelMobile_d.dll 2007-04-30 16:20 86,016 --a------ C:\WINDOWS\system32\IntelMobileWrapper.dll 2007-04-30 16:20 81,920 --a------ C:\WINDOWS\system32\BatteryCPP11.dll 2007-04-30 16:20 765,952 --a------ C:\WINDOWS\system32\msvcp71d.dll 2007-04-30 16:20 753,664 --a------ C:\WINDOWS\system32\IntelMobileCPP_d.dll 2007-04-30 16:20 73,728 --a------ C:\WINDOWS\system32\PlatformCPP11.dll 2007-04-30 16:20 655,360 --a------ C:\WINDOWS\system32\NetworkCPP11_d.dll 2007-04-30 16:20 65,536 --a------ C:\WINDOWS\system32\INTCPLAT.Dll 2007-04-30 16:20 61,440 --a------ C:\WINDOWS\system32\IntelMobileLogger.dll 2007-04-30 16:20 544,768 --a------ C:\WINDOWS\system32\MSVCR71D.dll 2007-04-30 16:20 532,480 --a------ C:\WINDOWS\system32\IntelMobileCPP11_d.dll 2007-04-30 16:20 5,002 --a------ C:\WINDOWS\system32\drivers\IntcDrv.sys 2007-04-30 16:20 438,272 --a------ C:\WINDOWS\system32\ProviderClass_Network11.dll 2007-04-30 16:20 430,080 --a------ C:\WINDOWS\system32\ProviderClass_Network10_2000.dll 2007-04-30 16:20 425,984 --a------ C:\WINDOWS\system32\ProviderClass_Network10.dll 2007-04-30 16:20 389,120 --a------ C:\WINDOWS\system32\NetworkCPP11.dll 2007-04-30 16:20 364,544 --a------ C:\WINDOWS\system32\IntelMobileCPP.dll 2007-04-30 16:20 348,160 --a------ C:\WINDOWS\system32\ProviderClass_Context11.dll 2007-04-30 16:20 331,776 --a------ C:\WINDOWS\system32\ProviderClass_Capability10.dll 2007-04-30 16:20 327,680 --a------ C:\WINDOWS\system32\ProviderInstance_MurocProtocol802_11.dll 2007-04-30 16:20 319,488 --a------ C:\WINDOWS\system32\IntelMobileCPP11.dll 2007-04-30 16:20 319,488 --a------ C:\WINDOWS\system32\IntelMobile.dll 2007-04-30 16:20 307,200 --a------ C:\WINDOWS\system32\IntelMobileJNI11.dll 2007-04-30 16:20 307,200 --a------ C:\WINDOWS\system32\ContextCPP11_d.dll 2007-04-30 16:20 253,952 --a------ C:\WINDOWS\system32\ProviderClass_Processor11.dll 2007-04-30 16:20 249,856 --a------ C:\WINDOWS\system32\IntelMobileJNI.dll 2007-04-30 16:20 245,760 --a------ C:\WINDOWS\system32\StorageCPP11_d.dll 2007-04-30 16:20 241,664 --a------ C:\WINDOWS\system32\ProviderClass_Battery10.dll 2007-04-30 16:20 241,664 --a------ C:\WINDOWS\system32\ProcessorCPP11_d.dll 2007-04-30 16:20 24,576 --a------ C:\WINDOWS\system32\IntelMobileEH.dll 2007-04-30 16:20 237,568 --a------ C:\WINDOWS\system32\ProviderInstance_Bluetooth_IVT11.dll 2007-04-30 16:20 237,568 --a------ C:\WINDOWS\system32\ProviderClass_Processor10.dll 2007-04-30 16:20 233,472 --a------ C:\WINDOWS\system32\ProviderInstance_Bluetooth_Microsoft11.dll 2007-04-30 16:20 22,016 --a------ C:\WINDOWS\system32\IntelMobile_ServerPS.dll 2007-04-30 16:20 208,896 --a------ C:\WINDOWS\system32\DisplayCPP11_d.dll 2007-04-30 16:20 204,800 --a------ C:\WINDOWS\system32\ProviderClass_Storage11.dll 2007-04-30 16:20 180,224 --a------ C:\WINDOWS\system32\ProviderInstance_MurocRadioAdapter11.dll 2007-04-30 16:20 180,224 --a------ C:\WINDOWS\system32\ProviderClass_Battery11.dll 2007-04-30 16:20 163,840 --a------ C:\WINDOWS\system32\ContextCPP11.dll 2007-04-30 16:20 163,840 --a------ C:\WINDOWS\system32\BatteryCPP11_d.dll 2007-04-30 16:20 159,744 --a------ C:\WINDOWS\system32\IntelMobileWrapper11_d.dll 2007-04-30 16:20 155,648 --a------ C:\WINDOWS\system32\ProviderClass_Display11.dll 2007-04-30 16:20 155,648 --a------ C:\WINDOWS\system32\PlatformCPP11_d.dll 2007-04-30 16:20 147,456 --a------ C:\WINDOWS\system32\ProviderInstance_NetworkAdapter_Example11.dll 2007-04-30 16:20 139,264 --a------ C:\WINDOWS\system32\impbw.dll 2007-04-30 16:20 135,168 --a------ C:\WINDOWS\system32\IntelMobileWrapper_d.dll 2007-04-30 16:20 126,976 --a------ C:\WINDOWS\system32\StorageCPP11.dll 2007-04-30 16:20 126,976 --a------ C:\WINDOWS\system32\ProcessorCPP11.dll 2007-04-30 16:20 122,880 --a------ C:\WINDOWS\system32\Layer_Manager.dll 2007-04-30 16:20 118,784 --a------ C:\WINDOWS\system32\ProviderClass_Platform10.dll 2007-04-30 16:20 114,688 --a------ C:\WINDOWS\system32\ProviderClass_Platform11.dll 2007-04-30 16:20 d-------- C:\Program Files\Intel 2007-04-30 11:42 49,152 --a------ C:\WINDOWS\nircmd.exe 2007-04-29 22:40 d-------- C:\VundoFix Backups 2007-04-29 13:49 d-------- C:\Program Files\Traction Software 2007-04-29 13:48 d-------- C:\DOCUME~1\admin\DANEAP~1\GetRightToGo 2007-04-27 10:08 d-------- C:\Program Files\GameTop.com 2007-04-27 01:12 6,656 --a------ C:\WINDOWS\system32\REnum.exe 2007-04-27 01:12 48,384 --a------ C:\WINDOWS\system32\drivers\SaiNtHid.sys 2007-04-27 01:12 45,056 --a------ C:\WINDOWS\system32\E2.exe 2007-04-27 01:12 233,472 --a------ C:\WINDOWS\system32\IFC23.dll 2007-04-27 01:12 19,200 --a------ C:\WINDOWS\system32\drivers\SaiNtSub.sys 2007-04-27 01:12 184,320 --a------ C:\WINDOWS\system32\PrfAct.exe 2007-04-27 01:12 16,384 --a------ C:\WINDOWS\system32\imm_enu.dll 2007-04-27 01:12 102,400 --a------ C:\WINDOWS\system32\NX.exe 2007-04-27 01:12 102,400 --a------ C:\WINDOWS\system32\immpidls.dll 2007-04-27 01:12 1,028,096 --a------ C:\WINDOWS\system32\immcpl.dll 2007-04-27 01:12 d-------- C:\Program Files\Saitek 2007-04-27 01:11 84,992 --a------ C:\WINDOWS\system32\atl70.dll 2007-04-27 01:11 106,496 --a------ C:\WINDOWS\system32\SaiCfg.dll 2007-04-25 23:14 626,688 --a------ C:\WINDOWS\system32\msvcr80.dll 2007-04-25 06:21 d-------- C:\spoolerlogs 2007-04-24 20:34 d-------- C:\Program Files\Common Files\Nokia 2007-04-24 19:13 d-------- C:\DOCUME~1\admin\DANEAP~1\MusicIP 2007-04-24 18:51 d-------- C:\86596187e9912b27b6efa912652195 2007-04-23 22:50 d-------- C:\DOCUME~1\admin\DANEAP~1\Media Player Classic 2007-04-23 22:49 765,952 --a------ C:\WINDOWS\system32\xvidcore.dll 2007-04-23 22:49 217,088 --a------ C:\WINDOWS\system32\yv12vfw.dll 2007-04-23 22:49 180,224 --a------ C:\WINDOWS\system32\xvidvfw.dll 2007-04-23 22:49 10,752 --a------ C:\WINDOWS\system32\ff_vfw.dll 2007-04-23 22:49 1,565,480 --a------ C:\WINDOWS\system32\wmv9vcm.dll 2007-04-23 22:49 d-------- C:\Program Files\K-Lite Codec Pack 2007-04-23 00:12 d-------- C:\Program Files\PC Connectivity Solution 2007-04-23 00:11 d-------- C:\WINDOWS\SxsCaPendDel 2007-04-23 00:07 d-------- C:\DOCUME~1\ALLUSE~1\DANEAP~1\Installations 2007-04-21 18:37 d--h----- C:\Program Files\InstallShield Installation Information 2007-04-21 18:37 d-------- C:\Program Files\VID_0E8F&PID_0003 2007-04-19 12:36 45,056 --a------ C:\WINDOWS\NCUNINST.EXE 2007-04-19 12:35 23,936 --a------ C:\WINDOWS\system32\drivers\Dot4usb.sys 2007-04-19 12:35 207,360 --a------ C:\WINDOWS\system32\drivers\Dot4.sys 2007-04-19 12:35 12,928 --a------ C:\WINDOWS\system32\drivers\Dot4Prt.sys 2007-04-19 12:33 d-------- C:\Program Files\Common Files\SWF Studio 2007-04-18 14:18 0 --a------ C:\blockstrain.dat 2007-04-18 13:35 54,784 --a------ C:\WINDOWS\system32\vfwwdm32.dll 2007-04-18 13:34 228,352 --a------ C:\WINDOWS\system32\drivers\BTCamDrv.sys 2007-04-13 21:07 d-------- C:\Program Files\DOSBox-0.70 2007-04-13 08:29 512 --a------ C:\drmHeader.bin 2007-04-12 23:43 d-------- C:\DOCUME~1\admin\DANEAP~1\Nitro PDF 2007-04-12 23:40 d-------- C:\Program Files\Common Files\BCL Technologies 2007-04-12 23:39 d-------- C:\DOCUME~1\ALLUSE~1\DANEAP~1\Nitro PDF 2007-04-11 08:08 128,232 --a------ C:\WINDOWS\system32\mucltui.dll 2007-04-10 21:43 d-------- C:\Program Files\Collins___Langenscheidt 2007-04-10 20:37 d-------- C:\Program Files\Ad Muncher 2007-04-07 10:06 266,360 --a------ C:\WINDOWS\system32\TweakUI.exe 2007-04-01 14:54 68,220 --a------ C:\WINDOWS\system32\drivers\StMp3Rec.sys 2007-03-30 15:20 123,784 --a------ C:\WINDOWS\system32\nitrosd.dll 2007-03-29 19:03 d-------- C:\Program Files\Microsoft.NET 2007-03-29 19:01 d-------- C:\Program Files\Microsoft Visual Studio 8 2007-03-29 19:00 d-------- C:\WINDOWS\SHELLNEW 2007-03-29 18:59 dr-h----- C:\MSOCache (((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))) 2007-04-30 20:06 -------- d-------- C:\Program Files\kaspersky lab 2007-04-30 19:55 -------- d-------- C:\DOCUME~1\admin\DANEAP~1\skype 2007-04-30 19:54 -------- d-------- C:\DOCUME~1\admin\DANEAP~1\the bat! 2007-04-30 16:34 648082 --a------ C:\WINDOWS\system32\perfh015.dat 2007-04-30 16:34 175916 --a------ C:\WINDOWS\system32\perfc015.dat 2007-04-30 15:52 -------- d-------- C:\DOCUME~1\admin\DANEAP~1\wsinspector 2007-04-29 13:51 -------- d-------- C:\Program Files\flashget 2007-04-25 08:19 -------- d-------- C:\DOCUME~1\admin\DANEAP~1\corel 2007-04-25 08:06 2828 --ahs---- C:\WINDOWS\system32\kgygaavl.sys 2007-04-25 06:21 -------- d-------- C:\Program Files\hewlett-packard 2007-04-24 20:34 -------- d-------- C:\Program Files\Common Files\pcsuite 2007-04-24 19:12 -------- d-------- C:\Program Files\winamp 2007-04-23 07:53 -------- d-------- C:\DOCUME~1\admin\DANEAP~1\nokia 2007-04-23 00:14 -------- d-------- C:\Program Files\difx 2007-04-23 00:09 -------- d-------- C:\Program Files\nokia 2007-04-22 09:42 -------- d-------- C:\Program Files\the bat! 2007-04-12 23:39 -------- d-------- C:\Program Files\nitro pdf 2007-04-12 23:37 458 --a------ C:\WINDOWS\dorp.dat 2007-04-12 18:56 -------- d-------- C:\Program Files\transdeu3 2007-04-11 08:54 -------- d-------- C:\Program Files\opera 2007-04-10 23:50 -------- d-------- C:\Program Files\deutsch translator 2 2007-04-07 16:51 -------- d-------- C:\DOCUME~1\admin\DANEAP~1\u3 2007-03-29 19:04 -------- d-------- C:\Program Files\msbuild 2007-03-29 19:04 -------- d-------- C:\Program Files\microsoft works 2007-03-25 21:41 -------- d-------- C:\DOCUME~1\admin\DANEAP~1\pc suite 2007-03-23 06:07 583504 --------- C:\WINDOWS\system32\xpsshhdr.dll 2007-03-23 06:07 1683280 --------- C:\WINDOWS\system32\xpssvcs.dll 2007-03-22 20:25 124928 --------- C:\WINDOWS\system32\prntvpt.dll 2007-03-17 15:45 293376 --a------ C:\WINDOWS\system32\winsrv.dll 2007-03-17 13:58 -------- d-------- C:\Program Files\media player classic 2007-03-13 23:36 -------- d-------- C:\DOCUME~1\admin\DANEAP~1\transang3 2007-03-08 17:38 579072 --a------ C:\WINDOWS\system32\user32.dll 2007-03-08 17:38 40960 --a------ C:\WINDOWS\system32\mf3216.dll 2007-03-08 17:38 281600 --a------ C:\WINDOWS\system32\gdi32.dll 2007-03-08 17:37 1843840 --a------ C:\WINDOWS\system32\win32k.sys 2007-03-08 01:51 43528 --------- C:\WINDOWS\system32\drivers\pxhelp20.sys 2007-03-08 01:51 129784 --------- C:\WINDOWS\system32\pxafs.dll 2007-03-04 11:13 675840 --a------ C:\WINDOWS\is-kn7uc.exe 2007-03-03 18:26 -------- d-------- C:\Program Files\webteh 2007-03-03 17:00 -------- d-------- C:\Program Files\Common Files\skype 2007-03-02 17:11 -------- d-------- C:\Program Files\killprocess 2007-03-02 10:35 -------- d-------- C:\DOCUME~1\admin\DANEAP~1\wnr 2007-03-01 21:54 -------- d-------- C:\Program Files\softany 2007-02-22 10:15 90624 --a------ C:\WINDOWS\system32\nmwcdcls.dll 2007-02-05 22:19 185856 --a------ C:\WINDOWS\system32\upnphost.dll 2007-02-01 06:56 823296 --a------ C:\WINDOWS\system32\divx_xx0c.dll 2007-02-01 06:56 823296 --a------ C:\WINDOWS\system32\divx_xx07.dll 2007-02-01 06:56 802816 --a------ C:\WINDOWS\system32\divx_xx11.dll 2007-01-31 23:27 524288 --a------ C:\WINDOWS\system32\divxsm.exe 2007-01-31 01:15 118784 --a------ C:\WINDOWS\system32\divxcodecupdatechecker.exe (((((((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))) *Note* empty entries & legit default entries are not shown [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects] {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} C:\Program Files\FlashGet\jccatch.dll {611EC819-7E7F-4D82-9FC4-857949D71D0B} C:\WINDOWS\system32\ddccb.dll [x] {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll {DF21F1DB-80C6-11D3-9483-B03D0EC10000} C:\Program Files\HPQ\IAM\Bin\ItIeAddIN.dll {F156768E-81EF-470C-9057-481BA8380DBA} C:\Program Files\FlashGet\getflash.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run] "SynTPEnh"="C:\\Program Files\\Synaptics\\SynTP\\SynTPEnh.exe" "QlbCtrl"="%ProgramFiles%\\Hewlett-Packard\\HP Quick Launch Buttons\\QlbCtrl.exe /Start" "PCSuiteTrayApplication"="C:\\Program Files\\Nokia\\Nokia PC Suite 6\\LaunchApplication.exe -startup" "OutpostFeedBack"="C:\\Program Files\\Agnitum\\Outpost Firewall\\feedback.exe /dump:os_startup" "Outpost Firewall"="C:\\Program Files\\Agnitum\\Outpost Firewall\\outpost.exe /waitservice" "Ad Muncher"="C:\\Program Files\\Ad Muncher\\AdMunch.exe /bt" "kav"="\"C:\\Program Files\\Kaspersky Lab\\Kaspersky Anti-Virus 6.0\\avp.exe\"" [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run] "WWWBackup"="\"C:\\Program Files\\DriveHQ\\DriveHQ WWWBackup 3.0\\wwwbackup.exe\" autorun" "Softany Monitor Control"="C:\\Program Files\\Softany\\Monitor Control\\MonitorControl.exe" "Skype"="\"C:\\Program Files\\Skype\\Phone\\Skype.exe\" /nosplash /minimized" "ctfmon.exe"="C:\\WINDOWS\\system32\\ctfmon.exe" [HKEY_USERS\.default\software\microsoft\windows\currentversion\run] "Nokia.PCSync"="C:\\Program Files\\Nokia\\Nokia PC Suite 6\\PcSync2.exe /NoDialog" [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer] "NoLowDiskSpaceChecks"=dword:00000001 [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowRun] [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\run] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks] "{9E93A147-E3F9-47AB-BAF0-915CCAAA7034}"="" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shellserviceobjectdelayload] "0aMCPClient"="{F5DF91F9-15E9-416B-A7C3-7519B11ECBFC}" HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\iifgddb HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\MCPClient HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\OneCard HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\WBSrv [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "appinit_dlls"="wbsys.dll" HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa Authentication Packages REG_MULTI_SZ msv1_0\0\0 Security Packages REG_MULTI_SZ kerberos\0msv1_0\0schannel\0wdigest\0\0 Notification Packages REG_MULTI_SZ scecli\0AsWlnPkg\0\0 [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="" "hkey"="HKLM" "command"="" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "sdCoreService"=dword:00000002 "sdAuxService"=dword:00000002 [HKEY_LOCAL_MACHINE\software\Microsoft\Windows NT\CurrentVersion\Svchost] HTTPFilter REG_MULTI_SZ HTTPFilter\0\0 LocalService REG_MULTI_SZ Alerter\0WebClient\0LmHosts\0RemoteRegistry\0upnphost\0SSDPSRV\0\0 NetworkService REG_MULTI_SZ DnsCache\0\0 DcomLaunch REG_MULTI_SZ DcomLaunch\0TermService\0\0 rpcss REG_MULTI_SZ RpcSs\0\0 imgsvc REG_MULTI_SZ StiSvc\0\0 termsvcs REG_MULTI_SZ TermService\0\0 Cognizance REG_MULTI_SZ ASChannel\0\0 WudfServiceGroup REG_MULTI_SZ WUDFSvc\0\0 [HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4f9e3a9e-d447-11db-8b12-0013025edfdb}] Shell\AutoRun\command G:\LaunchU3.exe -a ******************************************************************** catchme 0.3.660 W2K/XP/Vista - userland rootkit detector by Gmer, http://www.gmer.net Rootkit scan 2007-04-30 20:09:22 Windows 5.1.2600 Dodatek Service Pack 2 NTFS scanning hidden processes ... scanning hidden services ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden services: 0 hidden files: 0 ******************************************************************** Completion time: 07-04-30 20:09:44 C:\ComboFix-quarantined-files.txt ... 07-04-30 20:09 C:\ComboFix2.txt ... 07-04-30 14:20 C:\ComboFix3.txt ... 07-04-30 11:42
surtoip
Dodano
30.04.2007 22:11:19
Masz infekcję "VUNDO". Ściągnij [url=http://www.searchengines.pl/phpbb203/index.php?showtopic=87198][b][color=blue]VundoFix[/color][/b][/url] i stosuj go [b]wielokrotnie[/b], dotąd, aż w jego raporcie ([b]C:\VundoFix Report.txt[/b]) będzie pisało, że już nic nie wykrywa i wszystko jest ""deleted". Wtedy robisz log z [url=http://www.searchengines.pl/phpbb203/index.php?showtopic=86306][b][color=blue]ComboFix[/color][/b][/url] , po to, by znaleźć pliki tego VUNDO, których nawet VundoFix nie był w stanie usunąć. Wklej ten log tu do postu lub dołącz jako załącznik pod postem. Powodzenia!
morda
Dodano
29.04.2007 17:13:59
surtoip
Dodano:
29.04.2007 15:41:41
Komentarzy:
4
Strona 1 / 1