Win32:VB-EAA [Trj]

Dla specjalistów Bezpieczeństwo
#1

ComboFix 09-05-22.04 - Hubert 2009-05-22 22:03:43.1 - NTFSx86

Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1250.48.1045.18.3582.2618 [GMT 2:00]

Uruchomiony z: C:\Users\Hubert\Downloads\ComboFix.exe

AV: avast! antivirus 4.8.1282 [VPS 081113-1] *On-access scanning enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}

SP: avast! antivirus 4.8.1282 [VPS 081113-1] *enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}

SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}

.

((((((((((((((((((((((((((((((((((((((( Usunięto )))))))))))))))))))))))))))))))))))))))))))))))))

.

C:\Recycled\Recycled

.

((((((((((((((((((((((((( Pliki utworzone od 2009-04-22 do 2009-05-22 )))))))))))))))))))))))))))))))

.

2009-05-22 20:06:12 . 2009-05-22 20:06:22 0 d-----w C:\Users\Hubert\AppData\Local\temp

2009-05-22 12:23:33 . 2009-05-22 12:23:33 0 d-----w C:\Users\Hubert\AppData\Roaming\ArcaMicroScan

2009-05-22 11:24:34 . 2006-06-19 11:01:38 69632 ----a-w C:\Windows\system32\ztvcabinet.dll

2009-05-22 11:24:34 . 2006-05-25 13:52:46 162304 ----a-w C:\Windows\system32\ztvunrar36.dll

2009-05-22 11:24:34 . 2005-08-25 23:50:00 77312 ----a-w C:\Windows\system32\ztvunace26.dll

2009-05-22 11:24:34 . 2003-02-02 18:06:02 153088 ----a-w C:\Windows\system32\UNRAR3.dll

2009-05-22 11:24:34 . 2002-03-05 23:00:00 75264 ----a-w C:\Windows\system32\unacev2.dll

2009-05-22 04:35:47 . 2009-05-06 18:06:53 4784464 ----a-w C:\ProgramData\Microsoft\Windows Defender\Definition Updates{5D3D83B3-9D63-446E-8DA1-527E46358FB2}\mpengine.dll

2009-05-16 12:20:19 . 2009-05-16 12:20:23 0 d-----w C:\Program Files\AGEIA Technologies

2009-05-16 12:20:19 . 2009-05-16 12:20:19 0 d-----w C:\Windows\system32\AGEIA

2009-05-16 12:19:10 . 2009-05-16 12:19:10 0 d-----w C:\NVIDIA

2009-05-07 10:55:51 . 2009-05-07 10:56:35 8605552 ----a-w C:\ProgramData\ipla\update.exe

2009-05-01 20:05:55 . 2009-05-01 20:16:53 0 d-----w C:\Windows\system32\oodag

2009-04-30 22:08:08 . 2009-04-30 22:08:08 1505824 ----a-w C:\Windows\system32\nvcpluir.dll

2009-04-30 22:08:08 . 2009-04-30 22:08:08 1194528 ----a-w C:\Windows\system32\nvcplui.exe

2009-04-30 22:08:00 . 2009-04-30 22:08:00 1358368 ----a-w C:\Windows\system32\nvsvsr.dll

2009-04-30 22:08:00 . 2009-04-30 22:08:00 1292832 ----a-w C:\Windows\system32\nvsvs.dll

2009-04-30 22:07:52 . 2009-04-30 22:07:52 143360 ----a-w C:\Windows\system32\nvshext.dll

2009-04-30 22:07:52 . 2009-04-30 22:07:52 1097728 ----a-w C:\Windows\system32\nvsvcr.dll

2009-04-30 22:07:52 . 2008-05-03 03:46:00 526880 ----a-w C:\Windows\system32\nvsvc.dll

2009-04-30 22:07:52 . 2008-05-03 03:46:00 13535776 ----a-w C:\Windows\system32\nvcpl.dll

2009-04-30 22:07:52 . 2008-05-03 03:46:00 118784 ----a-w C:\Windows\system32\nvvsvc.exe

2009-04-30 20:02:00 . 2009-04-30 20:02:00 663552 ----a-w C:\Windows\system32\nvcuvid.dll

2009-04-30 20:02:00 . 2009-04-30 20:02:00 1704960 ----a-w C:\Windows\system32\nvcuda.dll

2009-04-30 20:02:00 . 2009-04-30 20:02:00 143360 ----a-w C:\Windows\system32\nvcod146.dll

2009-04-30 20:02:00 . 2009-04-30 20:02:00 1314816 ----a-w C:\Windows\system32\nvcuvenc.dll

2009-04-30 20:02:00 . 2008-05-03 03:46:00 5685248 ----a-w C:\Windows\system32\nvd3dum.dll

2009-04-29 21:19:22 . 2009-04-29 21:19:22 41808 ----a-w C:\Windows\system32\xfcodec.dll

.

(((((((((((((((((((((((((((((((((((((((( Sekcja Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2009-05-22 19:42:49 . 2006-12-05 05:22:06 661818 ----a-w C:\Windows\system32\perfh015.dat

2009-05-22 19:42:49 . 2006-12-05 05:22:06 126702 ----a-w C:\Windows\system32\perfc015.dat

2009-05-22 18:59:24 . 2008-07-31 08:13:11 137928 ----a-w C:\Windows\system32\drivers\PnkBstrK.sys

2009-05-22 18:59:15 . 2008-07-31 08:13:04 189768 ----a-w C:\Windows\system32\PnkBstrB.exe

2009-05-21 19:47:24 . 2009-04-15 15:31:58 1 ----a-w C:\Users\Hubert\AppData\Roaming\OpenOffice.org\3\user\uno_packages\cache\stamp.sys

2009-05-21 16:56:20 . 2009-01-19 12:26:37 0 d-----w C:\Users\Hubert\AppData\Roaming\Xfire

2009-05-21 15:53:17 . 2009-01-19 12:26:35 0 d-----w C:\ProgramData\Xfire

2009-05-16 14:47:33 . 2006-11-02 06:37:21 12400 ----a-w C:\Windows\system32\drivers\secdrv.sys

2009-05-16 14:47:23 . 2008-05-13 15:06:07 0 d-----w C:\ProgramData\NVIDIA

2009-05-16 13:07:16 . 2009-05-16 12:22:50 31966 ----a-w C:\ProgramData\nvModes.dat

2009-05-16 12:20:11 . 2008-08-03 17:15:18 0 d-----w C:\Program Files\Common Files\Wise Installation Wizard

2009-05-13 06:22:18 . 2006-11-02 11:18:33 0 d-----w C:\Program Files\Windows Mail

2009-05-07 14:14:42 . 2008-05-13 14:39:04 680 ----a-w C:\Users\Hubert\AppData\Local\d3d9caps.dat

2009-05-07 10:56:35 . 2008-12-30 15:40:57 0 d-----w C:\ProgramData\ipla

2009-04-30 20:02:00 . 2009-04-30 20:02:00 4224 ----a-w C:\Windows\system32\drivers\nvBridge.kmd

2009-04-26 22:42:48 . 2008-06-16 15:34:17 457248 ----a-w C:\Windows\system32\NVUNINST.EXE

2009-04-19 17:59:18 . 2009-04-19 17:59:18 0 d-----w C:\Users\Hubert\AppData\Roaming\OpenFM

2009-04-17 18:26:31 . 2008-05-13 14:42:33 0 d–h--w C:\Program Files\InstallShield Installation Information

2009-04-15 15:57:09 . 2008-05-13 14:39:25 53560 ----a-w C:\Users\Hubert\AppData\Local\GDIPFONTCACHEV1.DAT

2009-04-15 15:31:39 . 2009-04-15 15:31:39 0 d-----w C:\Users\Hubert\AppData\Roaming\OpenOffice.org

2009-04-09 19:10:12 . 2008-07-20 17:49:23 0 d-----w C:\Users\Hubert\AppData\Roaming\Nowe Gadu-Gadu

2009-04-06 18:55:11 . 2009-04-06 18:55:09 0 d-----w C:\Users\Hubert\AppData\Roaming\AccurateRip

2009-04-06 18:55:07 . 2009-04-06 18:55:07 0 d-----w C:\Users\Hubert\AppData\Roaming\AD ON Multimedia

2009-04-05 16:15:54 . 2009-04-05 16:15:54 0 d-----w C:\Program Files\Common Files\Steam

2009-04-03 10:39:20 . 2009-04-03 10:39:20 70936 ----a-w C:\Windows\system32\PhysXLoader.dll

2009-03-17 03:38:46 . 2009-04-16 21:13:25 13824 ----a-w C:\Windows\system32\apilogen.dll

2009-03-17 03:38:44 . 2009-04-16 21:13:25 24064 ----a-w C:\Windows\system32\amxread.dll

2009-03-04 16:52:31 . 2008-07-31 08:12:59 75064 ----a-w C:\Windows\system32\PnkBstrA.exe

2009-03-03 04:46:01 . 2009-04-16 21:13:29 3599328 ----a-w C:\Windows\system32\ntkrnlpa.exe

2009-03-03 04:46:01 . 2009-04-16 21:13:29 3547632 ----a-w C:\Windows\system32\ntoskrnl.exe

2009-03-03 04:40:12 . 2009-04-16 21:13:19 827392 ----a-w C:\Windows\system32\wininet.dll

2009-03-03 04:39:36 . 2009-04-16 21:13:27 183296 ----a-w C:\Windows\system32\sdohlp.dll

2009-03-03 04:39:32 . 2009-04-16 21:13:30 551424 ----a-w C:\Windows\system32\rpcss.dll

2009-03-03 04:39:22 . 2009-04-16 21:13:27 26112 ----a-w C:\Windows\system32\printfilterpipelineprxy.dll

2009-03-03 04:37:14 . 2009-04-16 21:13:18 78336 ----a-w C:\Windows\system32\ieencode.dll

2009-03-03 04:37:11 . 2009-04-16 21:13:27 98304 ----a-w C:\Windows\system32\iasrecst.dll

2009-03-03 04:37:11 . 2009-04-16 21:13:27 54784 ----a-w C:\Windows\system32\iasads.dll

2009-03-03 04:37:11 . 2009-04-16 21:13:27 44032 ----a-w C:\Windows\system32\iasdatastore.dll

2009-03-03 03:04:59 . 2009-04-16 21:13:28 666624 ----a-w C:\Windows\system32\printfilterpipelinesvc.exe

2009-03-03 02:38:13 . 2009-04-16 21:13:27 17408 ----a-w C:\Windows\system32\iashost.exe

2009-03-03 02:28:19 . 2009-04-16 21:13:19 26624 ----a-w C:\Windows\system32\ieUnatt.exe

.

((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru ))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane

REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

“LightScribe Control Panel”=“C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe” [2007-04-19 11:26:52 484904]

“ehTray.exe”=“C:\Windows\ehome\ehTray.exe” [2008-01-19 07:33:09 125952]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

“JMB36X IDE Setup”=“C:\Windows\RaidTool\xInsIDE.exe” [2007-03-20 06:36:18 36864]

“RemoteControl”=“C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe” [2006-11-23 13:10:42 56928]

“LanguageShortcut”=“C:\Program Files\CyberLink\PowerDVD\Language\Language.exe” [2006-12-05 20:55:32 54832]

“TBPanel”=“C:\Program Files\VDOTool\TBPanel.exe” [2008-01-29 09:19:46 2157096]

“NeroFilterCheck”=“C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe” [2007-03-01 13:57:24 153136]

“SecurDisc”=“C:\Program Files\Nero\Nero 7\InCD\NBHGui.exe” [2007-05-15 13:55:46 1628208]

“InCD”=“C:\Program Files\Nero\Nero 7\InCD\InCD.exe” [2007-05-15 13:55:26 1057328]

“SunJavaUpdateSched”=“C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe” [2008-03-25 02:28:02 144784]

“avast!”=“D:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe” [2009-02-05 21:08:45 81000]

“NvCplDaemon”=“C:\Windows\system32\NvCpl.dll” [2008-05-03 03:46:00 13535776]

“NvMediaCenter”=“C:\Windows\system32\NvMcTray.dll” [2008-05-03 03:46:00 92704]

“RtHDVCpl”=“RtHDVCpl.exe” - C:\Windows\RtHDVCpl.exe [2007-09-19 06:50:44 4702208]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

“EnableLUA”= 0 (0x0)

“EnableUIADesktopToggle”= 0 (0x0)

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]

BootExecute REG_MULTI_SZ autocheck autochk *\0OODBS

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

@=“Service”

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-3550831808-92553184-2285210745-1000]

“EnableNotificationsRef”=dword:00000001

[HKLM~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]

“{C7C66224-4798-4428-B015-4D82FDFD4DF2}”= UDP:D:\Program Files\Ubisoft\Assassin’s Creed\AssassinsCreed_Dx9.exe:Assassin’s Creed Dx9

“{C2382920-28E8-40CE-9C81-7A201749A1B5}”= TCP:D:\Program Files\Ubisoft\Assassin’s Creed\AssassinsCreed_Dx9.exe:Assassin’s Creed Dx9

“{A52E728A-88BE-4E83-8AD6-F89DE9C21014}”= UDP:D:\Program Files\Ubisoft\Assassin’s Creed\AssassinsCreed_Dx10.exe:Assassin’s Creed Dx10

“{B22FCFFA-4D56-4C2D-9576-10890F7B47D2}”= TCP:D:\Program Files\Ubisoft\Assassin’s Creed\AssassinsCreed_Dx10.exe:Assassin’s Creed Dx10

“{A1D770F5-121D-465B-806C-2FADF107E97B}”= UDP:D:\Program Files\Ubisoft\Assassin’s Creed\AssassinsCreed_Launcher.exe:Assassin’s Creed Update

“{8554B93D-7AAF-4D99-AA06-49B2C84ED16D}”= TCP:D:\Program Files\Ubisoft\Assassin’s Creed\AssassinsCreed_Launcher.exe:Assassin’s Creed Update

“TCP Query User{DF60BB2A-1D7C-49D2-BB96-F6E85D8BFADA}D:\program files\cossacks - back to war\dmcr.exe”= UDP:D:\program files\cossacks - back to war\dmcr.exe:dmcr

“UDP Query User{329F6778-3982-4E78-8691-CBB0CEFFCBB0}D:\program files\cossacks - back to war\dmcr.exe”= TCP:D:\program files\cossacks - back to war\dmcr.exe:dmcr

“TCP Query User{F37AC4C9-E59F-4D0C-B2DA-DFDE6E266EC2}D:\program files\black sea studios\knights of honor\koh.exe”= UDP:D:\program files\black sea studios\knights of honor\koh.exe:KoH

“UDP Query User{80CEDDBD-2B73-4F8A-995C-A326E99611D5}D:\program files\black sea studios\knights of honor\koh.exe”= TCP:D:\program files\black sea studios\knights of honor\koh.exe:KoH

“TCP Query User{7B809169-6638-4843-A324-71ECC3D6E40E}D:\program files\blobby volley 2 (alpha 7)\blobby.exe”= UDP:D:\program files\blobby volley 2 (alpha 7)\blobby.exe:blobby

“UDP Query User{5AE486E2-29F9-4915-99D0-D1346E5F1E5F}D:\program files\blobby volley 2 (alpha 7)\blobby.exe”= TCP:D:\program files\blobby volley 2 (alpha 7)\blobby.exe:blobby

“TCP Query User{833ACB5F-4136-46CD-9B79-4CE3F18765D2}C:\programdata\kaspersky lab setup files\kaspersky internet security 2009\polish\setup.exe”= UDP:C:\programdata\kaspersky lab setup files\kaspersky internet security 2009\polish\setup.exe:Kaspersky Internet Security 2009 Setup

“UDP Query User{8FECCC1C-B8E5-4B6A-A364-F86990D2B9E2}C:\programdata\kaspersky lab setup files\kaspersky internet security 2009\polish\setup.exe”= TCP:C:\programdata\kaspersky lab setup files\kaspersky internet security 2009\polish\setup.exe:Kaspersky Internet Security 2009 Setup

“TCP Query User{1D1DAA98-DA41-489F-BE3D-75B91A10DF82}D:\program files\nowe gadu-gadu\gg.exe”= UDP:D:\program files\nowe gadu-gadu\gg.exe:Nowe Gadu-Gadu beta

“UDP Query User{7203BBF1-C8D5-46C7-BAEB-1CF96A1666C7}D:\program files\nowe gadu-gadu\gg.exe”= TCP:D:\program files\nowe gadu-gadu\gg.exe:Nowe Gadu-Gadu beta

“{C78DF286-79A7-450B-B1E8-87AAA0C5702A}”= UDP:C:\Program Files\Cyanide\GameCenter\GameCenter.exe:GameCenter

“{8FF9D1B9-E489-4B88-A6CF-0F11DA188547}”= TCP:C:\Program Files\Cyanide\GameCenter\GameCenter.exe:GameCenter

“TCP Query User{C20D9013-E303-4DD4-AE17-AC0204D81BB5}D:\program files\activision\call of duty 2\cod2mp_s.exe”= UDP:D:\program files\activision\call of duty 2\cod2mp_s.exe:CoD2MP_s

“UDP Query User{95DE477D-10F9-4A4C-895B-1229DE94BE23}D:\program files\activision\call of duty 2\cod2mp_s.exe”= TCP:D:\program files\activision\call of duty 2\cod2mp_s.exe:CoD2MP_s

“TCP Query User{C45E16A9-0571-43CA-817E-F66722303FFC}D:\program files\ubisoft\heroes of might and magic iii - zlota edycja\heroes3.exe”= UDP:D:\program files\ubisoft\heroes of might and magic iii - zlota edycja\heroes3.exe:Heroes of Might and Magic® III (CDP)

“UDP Query User{CBA7129D-DCE5-419B-BAA4-D7D291F7ED56}D:\program files\ubisoft\heroes of might and magic iii - zlota edycja\heroes3.exe”= TCP:D:\program files\ubisoft\heroes of might and magic iii - zlota edycja\heroes3.exe:Heroes of Might and Magic® III (CDP)

“TCP Query User{8CA178C0-CE3E-4EE8-BF2C-9F129FBC2F15}D:\program files\ipla\ipla.exe”= UDP:D:\program files\ipla\ipla.exe:ipla

“UDP Query User{EB9F29A7-83CD-4EE0-BCFA-5B37ADD8AC16}D:\program files\ipla\ipla.exe”= TCP:D:\program files\ipla\ipla.exe:ipla

“TCP Query User{EE88EB23-7923-4CF1-A40C-759EFDBDB61D}D:\program files\xfire\xfire.exe”= UDP:D:\program files\xfire\xfire.exe:Xfire

“UDP Query User{760096C5-DAE9-444B-A204-38E57BE0E43A}D:\program files\xfire\xfire.exe”= TCP:D:\program files\xfire\xfire.exe:Xfire

“TCP Query User{91C7839C-E516-4A19-95CF-A4813FB85FA5}D:\program files\ubisoft\heroes of might and magic iii - zlota edycja\heroes33.exe”= UDP:D:\program files\ubisoft\heroes of might and magic iii - zlota edycja\heroes33.exe:Heroes of Might and Magic® III

“UDP Query User{A4CE79DE-040E-48B6-A403-27D2FA1C31C0}D:\program files\ubisoft\heroes of might and magic iii - zlota edycja\heroes33.exe”= TCP:D:\program files\ubisoft\heroes of might and magic iii - zlota edycja\heroes33.exe:Heroes of Might and Magic® III

“{DB83924D-F33E-42EB-91A1-3EFC37BAFC68}”= UDP:D:\Program Files\Deep Silver\S.T.A.L.K.E.R. - Clear Sky\bin\xrEngine.exe:S.T.A.L.K.E.R. - Clear Sky (CLI)

“{3EFCCD55-1767-429D-B3F1-223796C860B5}”= TCP:D:\Program Files\Deep Silver\S.T.A.L.K.E.R. - Clear Sky\bin\xrEngine.exe:S.T.A.L.K.E.R. - Clear Sky (CLI)

“{52248860-B893-45E7-967A-1FB0FAE4BDE2}”= UDP:D:\Program Files\Deep Silver\S.T.A.L.K.E.R. - Clear Sky\bin\dedicated\xrEngine.exe:S.T.A.L.K.E.R. - Clear Sky (SRV)

“{B918A8F9-F528-430A-9777-78211101BDE5}”= TCP:D:\Program Files\Deep Silver\S.T.A.L.K.E.R. - Clear Sky\bin\dedicated\xrEngine.exe:S.T.A.L.K.E.R. - Clear Sky (SRV)

“TCP Query User{E8923175-51F5-4FC9-AAB1-DFD938953D0E}D:\program files\tvuplayer\tvuplayer.exe”= UDP:D:\program files\tvuplayer\tvuplayer.exe:TVU Player Component

“UDP Query User{DE579472-1553-44C4-9D04-31873B93C11D}D:\program files\tvuplayer\tvuplayer.exe”= TCP:D:\program files\tvuplayer\tvuplayer.exe:TVU Player Component

R1 aswSP;avast! Self Protection;C:\Windows\System32\drivers\aswSP.sys [2008-07-11 11:47:52 114768]

R2 aswFsBlk;aswFsBlk;C:\Windows\System32\drivers\aswFsBlk.sys [2008-07-11 11:47:52 20560]

R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2008-07-11 11:47:44 51792]

R3 netr73;Linksys Compact Wireless-G USB Adapter Driver for Vista;C:\Windows\System32\drivers\WUSB54GCx86.sys [2007-03-12 10:12:00 256000]

S3 GEST Service;GEST Service for program management.;C:\Program Files\GIGABYTE\GEST\GSvr.exe [2008-05-13 16:42:34 47624]

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components{10880D85-AAD9-4558-ABDC-2AB1552D831F}]

“C:\Program Files\Common Files\LightScribe\LSRunOnce.exe”

.

Zawartość folderu ‘Zaplanowane zadania’

2009-05-22 C:\Windows\Tasks\User_Feed_Synchronization-{747418E4-CE8A-4BD9-A582-9427D321E064}.job

  • C:\Windows\system32\msfeedssync.exe [2008-07-04 20:01:51 . 2008-01-19 07:33:16]

.

        • USUNIĘTO PUSTE WPISY - - - -

HKLM-Run-WinampAgent - D:\Program Files\Winamp\winampa.exe

HKLM-Run-Anti Trojan Elite - D:\Program Files\Anti Trojan Elite\TJEnder.exe

SafeBoot-procexp90.Sys

.

------- Skan uzupełniający -------

.

uStart Page = hxxp://www.google.pl/

uInternet Settings,ProxyOverride = *.local

FF - ProfilePath - C:\Users\Hubert\AppData\Roaming\Mozilla\Firefox\Profiles\gr01qovj.default\

FF - prefs.js: browser.search.selectedEngine - Allegro

FF - plugin: D:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll

FF - plugin: D:\Program Files\VistaCodecPack\rm\browser\plugins\nppl3260.dll

FF - plugin: D:\Program Files\VistaCodecPack\rm\browser\plugins\nprpjplug.dll

.

Avast wykrył Win32:VB-EAA [Trj], jednak nawet z ujawnionymi ukrytymi plikami wirusa usnąć nie mogę. Wstawiam raport z ComboFixa.

Dodane 22.05.2009 (Pt) 23:01

http://wklej.org/id/94203/ - raport z HijackThis.

Chciałbym wiedzieć, czy na moim komputerze nadal znajduje się wirus Win32:VB-EAA [Trj] lub jakikolwiek inny szkodnik. Proszę o pomoc, ponieważ jestem w tych sprawach niestety zielony. Wirus przyszedł z pendrive, Avast wziął pliki do kwarantanny, jednak nie chce ich usunąć. Po formacie pendrive jest on w porządku, jednak niby wirusy nadal są na komputerze.