Mám problém s vírusom, robi nieco v tom zmysle, ze ziadny antivir sa mi neda zapnut ani nechce spustit test, pomaly vsetko co chcem spravit tak mi pise, ze potrebujem povolenie spravcu.. tu je log, nech sa páči..
Logfile of random's system information tool 1.09 (written by random/random)
Run by asus at 2011-10-20 20:02:04
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 244 GB (87%) free of 279 GB
Total RAM: 3071 MB (68% free)
HijackThis download failed
=========Mozilla firefox=========
ProfilePath - C:\Users\asus\AppData\Roaming\Mozilla\Firefox\Profiles\w5zyn83o.default
prefs.js - "browser.startup.homepage" - "www.google.sk"
prefs.js - "extensions.enabledItems" - "{20a82645-c095-46ed-80e3-08825760534b}:1.2.1, {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}:5.6.0.8312, ffxtlbr@babylon.com:1.1.9, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.23"
prefs.js - "keyword.URL" - "http://search.babylon.com/?babsrc=SP_ss ... fID=101434"
"{20a82645-c095-46ed-80e3-08825760534b}"=c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@google.com/npPicasa2,version=2.0.0]
"Description"=Picasa2 plugin
"Path"=C:\Program Files\Picasa2\npPicasa2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5]
"Description"=Office Live Update v1.5
"Path"=C:\Program Files\Microsoft\Office Live\npOLW.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8051.1204]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
D:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
D:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
D:\Program Files\Mozilla Firefox\plugins\
NPOFFICE.DLL
D:\Program Files\Mozilla Firefox\searchplugins\
atlas-sk.xml
azet-sk.xml
babylon.xml
dunaj-sk.xml
eBay.xml
google.xml
slovnik-sk.xml
wikipedia-sk.xml
zoznam-sk.xml
C:\Users\asus\AppData\Roaming\Mozilla\Firefox\Profiles\w5zyn83o.default\extensions\
ffxtlbr@babylon.com
{20a82645-c095-46ed-80e3-08825760534b}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG8\avgssie.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A057A204-BACC-4D26-9990-79A187E2698E}]
AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{A057A204-BACC-4D26-9990-79A187E2698E} - AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
"CLMLServer"=C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe [2008-07-19 104936]
"P2Go_Menu"=C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [2008-06-14 210216]
"Google Desktop Search"=C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2010-09-15 30192]
"HControlUser"=C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe [2008-08-18 98304]
"ATKOSD2"=C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe [2008-09-03 8105984]
"ATKMEDIA"=C:\Program Files\ASUS\ATK Media\DMedia.exe [2008-12-29 159744]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2011-10-20 9398888]
"ADSMTray"=C:\Program Files\ASUS\ASUS Data Security Manager\ADSMTray.exe [2008-04-01 266240]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2007-12-06 1029416]
"ASUS Screen Saver Protector"=C:\Windows\AsScrPro.exe [2009-04-03 3054136]
"Skytel"=C:\Program Files\Realtek\Audio\HDA\Skytel.exe [2009-01-20 1833504]
"avast5"=D:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2010-03-09 2769336]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2008-06-09 2363392]
"SRS Premium Sound"=C:\Program Files\SRS Labs\SRS Premium Sound\SRSPremiumSoundBig_Small.exe [2009-01-20 2344184]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-21 125952]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\ASUS\ASUS Data Security Manager\ASPWDFLT
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"msacm.l3codecp"=l3codecp.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2011-10-20 20:02:04 ----D---- C:\rsit
2011-10-20 20:02:04 ----D---- C:\Program Files\trend micro
2011-10-20 19:26:22 ----D---- C:\Users\asus\AppData\Roaming\AVG
2011-10-20 16:03:56 ----A---- C:\Windows\ntbtlog.txt
2011-10-20 15:27:16 ----D---- C:\sh4ldr
2011-10-20 15:27:16 ----D---- C:\Program Files\Enigma Software Group
2011-10-20 15:26:54 ----D---- C:\Windows\D3F93A5A7A5D4867B2A16F46500D006C.TMP
2011-10-20 15:26:53 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2011-10-20 14:55:44 ----A---- C:\Windows\system32\drivers\aswSP.sys
2011-10-20 14:55:44 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys
2011-10-20 14:55:43 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2011-10-20 14:55:43 ----A---- C:\Windows\system32\drivers\aswRdr.sys
2011-10-20 14:55:42 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2011-10-20 14:55:40 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2011-10-20 14:55:33 ----A---- C:\Windows\system32\aswBoot.exe
2011-10-20 14:13:49 ----A---- C:\Windows\system32\drivers\revoflt.sys
2011-10-20 13:17:32 ----D---- C:\Program Files\Microsoft Security Client
2011-10-20 13:14:54 ----HD---- C:\Windows\msdownld.tmp
2011-10-20 13:14:38 ----A---- C:\Windows\system32\wininet.dll
2011-10-20 13:14:38 ----A---- C:\Windows\system32\urlmon.dll
2011-10-20 13:14:38 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2011-10-20 13:14:38 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2011-10-20 13:14:38 ----A---- C:\Windows\system32\msrating.dll
2011-10-20 13:14:38 ----A---- C:\Windows\system32\msls31.dll
2011-10-20 13:14:38 ----A---- C:\Windows\system32\mshtmler.dll
2011-10-20 13:14:38 ----A---- C:\Windows\system32\jsproxy.dll
2011-10-20 13:14:38 ----A---- C:\Windows\system32\ieui.dll
2011-10-20 13:14:38 ----A---- C:\Windows\system32\iesysprep.dll
2011-10-20 13:14:38 ----A---- C:\Windows\system32\iertutil.dll
2011-10-20 13:14:38 ----A---- C:\Windows\system32\ieframe.dll
2011-10-20 13:14:37 ----A---- C:\Windows\system32\wextract.exe
2011-10-20 13:14:37 ----A---- C:\Windows\system32\webcheck.dll
2011-10-20 13:14:37 ----A---- C:\Windows\system32\vbscript.dll
2011-10-20 13:14:37 ----A---- C:\Windows\system32\url.dll
2011-10-20 13:14:37 ----A---- C:\Windows\system32\mshtmled.dll
2011-10-20 13:14:37 ----A---- C:\Windows\system32\msfeeds.dll
2011-10-20 13:14:37 ----A---- C:\Windows\system32\licmgr10.dll
2011-10-20 13:14:37 ----A---- C:\Windows\system32\inseng.dll
2011-10-20 13:14:37 ----A---- C:\Windows\system32\iexpress.exe
2011-10-20 13:14:37 ----A---- C:\Windows\system32\iesetup.dll
2011-10-20 13:14:37 ----A---- C:\Windows\system32\iernonce.dll
2011-10-20 13:14:37 ----A---- C:\Windows\system32\iedkcs32.dll
2011-10-20 13:14:37 ----A---- C:\Windows\system32\ieapfltr.dll
2011-10-20 13:14:37 ----A---- C:\Windows\system32\ieapfltr.dat
2011-10-20 13:14:37 ----A---- C:\Windows\system32\ie4uinit.exe
2011-10-20 13:14:37 ----A---- C:\Windows\system32\icardie.dll
2011-10-20 13:14:37 ----A---- C:\Windows\system32\dxtrans.dll
2011-10-20 13:14:37 ----A---- C:\Windows\system32\dxtmsft.dll
2011-10-20 13:14:36 ----A---- C:\Windows\system32\pngfilt.dll
2011-10-20 13:14:36 ----A---- C:\Windows\system32\occache.dll
2011-10-20 13:14:36 ----A---- C:\Windows\system32\mshtml.dll
2011-10-20 13:14:36 ----A---- C:\Windows\system32\mshta.exe
2011-10-20 13:14:36 ----A---- C:\Windows\system32\msfeedssync.exe
2011-10-20 13:14:36 ----A---- C:\Windows\system32\msfeedsbs.dll
2011-10-20 13:14:36 ----A---- C:\Windows\system32\jscript9.dll
2011-10-20 13:14:36 ----A---- C:\Windows\system32\jscript.dll
2011-10-20 13:14:36 ----A---- C:\Windows\system32\imgutil.dll
2011-10-20 13:14:36 ----A---- C:\Windows\system32\ieUnatt.exe
2011-10-20 13:14:36 ----A---- C:\Windows\system32\iepeers.dll
2011-10-20 13:14:36 ----A---- C:\Windows\system32\ieakui.dll
2011-10-20 13:14:36 ----A---- C:\Windows\system32\ieaksie.dll
2011-10-20 13:14:36 ----A---- C:\Windows\system32\ieakeng.dll
2011-10-20 13:14:36 ----A---- C:\Windows\system32\IEAdvpack.dll
2011-10-20 13:14:36 ----A---- C:\Windows\system32\advpack.dll
2011-10-20 13:14:36 ----A---- C:\Windows\system32\admparse.dll
2011-10-20 12:02:10 ----HDC---- C:\ProgramData\{3C0AACBF-B491-4BE5-BAF9-AA46E0629E42}
2011-10-20 11:58:59 ----A---- C:\Windows\system32\drivers\athw.sys
2011-10-20 11:58:21 ----A---- C:\Windows\system32\drivers\SiSGB6.sys
2011-10-20 11:53:38 ----D---- C:\Windows\system32\SRSLabs
2011-10-20 11:53:04 ----A---- C:\Windows\system32\RtkPgExt.dll
2011-10-20 11:53:04 ----A---- C:\Windows\system32\RtkApoApi.dll
2011-10-20 11:53:04 ----A---- C:\Windows\system32\RtkAPO.dll
2011-10-20 11:53:03 ----A---- C:\Windows\system32\RTEEP32A.dll
2011-10-20 11:53:03 ----A---- C:\Windows\system32\RTEEL32A.dll
2011-10-20 11:53:03 ----A---- C:\Windows\system32\RTEEG32A.dll
2011-10-20 11:53:03 ----A---- C:\Windows\system32\RTEED32A.dll
2011-10-20 11:53:03 ----A---- C:\Windows\system32\drivers\RTKVHDA.sys
2011-10-20 11:53:02 ----A---- C:\Windows\system32\RP3DHT32.dll
2011-10-20 11:53:02 ----A---- C:\Windows\system32\RP3DAA32.dll
2011-10-20 11:53:01 ----A---- C:\Windows\system32\FMAPO.dll
2011-10-20 11:53:01 ----A---- C:\Windows\system32\AERTARen.dll
2011-10-20 11:53:01 ----A---- C:\Windows\system32\AERTACap.dll
2011-10-20 11:44:04 ----D---- C:\ProgramData\Uniblue
2011-10-20 11:44:01 ----D---- C:\Users\asus\AppData\Roaming\Uniblue
2011-10-20 10:37:43 ----A---- C:\Windows\system32\drivers\athr.sys
2011-10-20 09:40:23 ----D---- C:\Windows\sk-SK
2011-10-20 09:39:31 ----D---- C:\Windows\system32\drivers\sk-SK
2011-10-20 09:37:01 ----D---- C:\Windows\system32\Vistalizator
2011-10-13 14:26:25 ----AH---- C:\ProgramData\ezsidmv.dat
2011-10-12 21:39:07 ----A---- C:\Windows\system32\psisdecd.dll
2011-10-12 21:39:05 ----A---- C:\Windows\system32\win32k.sys
2011-10-12 21:38:50 ----A---- C:\Windows\system32\UIAutomationCore.dll
2011-10-12 21:38:50 ----A---- C:\Windows\system32\oleacc.dll
2011-10-12 21:38:49 ----A---- C:\Windows\system32\oleaut32.dll
2011-10-12 21:38:49 ----A---- C:\Windows\system32\oleaccrc.dll
2011-10-12 10:47:43 ----D---- C:\Users\asus\AppData\Roaming\Babylon
2011-10-12 10:47:43 ----D---- C:\ProgramData\Babylon
2011-10-12 10:47:43 ----D---- C:\Program Files\Easy Downloads
2011-10-11 13:08:56 ----D---- C:\Users\asus\AppData\Roaming\Systweak
2011-10-10 21:16:17 ----D---- C:\Users\asus\AppData\Roaming\skypePM
2011-10-10 21:09:02 ----D---- C:\Users\asus\AppData\Roaming\Skype
2011-10-10 21:08:42 ----A---- C:\Windows\system32\tzres.dll
2011-10-10 21:08:40 ----D---- C:\ProgramData\Skype
2011-10-10 20:54:13 ----D---- C:\dd4a6b45abd787f6852fe543af77
2011-10-07 21:54:50 ----D---- C:\Users\asus\AppData\Roaming\NVIDIA
2011-10-06 16:48:22 ----D---- C:\ProgramData\NVIDIA
2011-10-06 16:48:03 ----A---- C:\Windows\system32\easyupdatusapiu.dll
2011-10-06 16:46:17 ----A---- C:\Windows\system32\OpenCL.dll
2011-10-06 16:46:17 ----A---- C:\Windows\system32\nvwgf2um.dll
2011-10-06 16:46:17 ----A---- C:\Windows\system32\nvoglv32.dll
2011-10-06 16:46:16 ----A---- C:\Windows\system32\nvgenco32.dll
2011-10-06 16:46:16 ----A---- C:\Windows\system32\nvdispco32.dll
2011-10-06 16:46:16 ----A---- C:\Windows\system32\nvd3dum.dll
2011-10-06 16:46:16 ----A---- C:\Windows\system32\nvcuvid.dll
2011-10-06 16:46:16 ----A---- C:\Windows\system32\nvcuvenc.dll
2011-10-06 16:46:16 ----A---- C:\Windows\system32\nvcuda.dll
2011-10-06 16:46:16 ----A---- C:\Windows\system32\nvcompiler.dll
2011-10-06 16:46:16 ----A---- C:\Windows\system32\nvapi.dll
2011-10-06 16:46:16 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2011-10-06 16:42:00 ----D---- C:\ProgramData\NVIDIA Corporation
2011-10-06 16:39:29 ----D---- C:\NVIDIA
2011-09-23 12:39:10 ----A---- C:\Windows\system32\winsrv.dll
2011-09-23 12:10:56 ----A---- C:\Windows\system32\xmllite.dll
2011-09-23 11:05:37 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2011-09-22 12:21:19 ----RA---- C:\Windows\system32\tmpC342.tmp
2011-09-22 12:20:54 ----RA---- C:\Windows\system32\tmpC331.tmp
2011-09-22 11:13:31 ----RA---- C:\Windows\system32\tmpACC4.tmp
2011-09-22 11:12:32 ----RA---- C:\Windows\system32\tmpACC3.tmp
======List of files/folders modified in the last 1 month======
2011-10-20 20:02:04 ----RD---- C:\Program Files
2011-10-20 20:02:04 ----D---- C:\Windows\Temp
2011-10-20 20:01:33 ----AD---- C:\ProgramData\Temp
2011-10-20 19:30:28 ----D---- C:\Windows\system32\config
2011-10-20 19:30:04 ----SD---- C:\Windows\Downloaded Program Files
2011-10-20 19:26:24 ----D---- C:\Windows\Tasks
2011-10-20 19:26:23 ----SHD---- C:\Windows\Installer
2011-10-20 19:18:52 ----D---- C:\Windows\system32\drivers
2011-10-20 19:18:51 ----HD---- C:\ProgramData
2011-10-20 19:18:13 ----D---- C:\Windows\System32
2011-10-20 19:18:13 ----D---- C:\Windows
2011-10-20 19:08:34 ----D---- C:\Windows\inf
2011-10-20 19:08:34 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-10-20 18:53:56 ----D---- C:\Windows\Prefetch
2011-10-20 15:34:26 ----D---- C:\Windows\Debug
2011-10-20 15:27:20 ----D---- C:\Windows\system32\Tasks
2011-10-20 15:27:18 ----SD---- C:\Users\asus\AppData\Roaming\Microsoft
2011-10-20 15:26:53 ----D---- C:\Program Files\Common Files
2011-10-20 15:01:11 ----D---- C:\Program Files\Common Files\LightScribe
2011-10-20 15:00:43 ----A---- C:\Windows\system32\acovcnt.exe
2011-10-20 14:59:18 ----D---- C:\Windows\system32\catroot
2011-10-20 14:55:30 ----D---- C:\ProgramData\Alwil Software
2011-10-20 14:52:06 ----D---- C:\Program Files\Internet Explorer
2011-10-20 14:23:49 ----D---- C:\Program Files\TuneUp Utilities 2010
2011-10-20 14:20:58 ----D---- C:\Windows\Minidump
2011-10-20 13:26:41 ----RD---- C:\Windows\Offline Web Pages
2011-10-20 13:26:41 ----D---- C:\Windows\system32\wbem
2011-10-20 13:26:41 ----D---- C:\Windows\system32\migration
2011-10-20 13:26:41 ----D---- C:\Windows\system32\en-US
2011-10-20 13:26:41 ----D---- C:\Windows\PolicyDefinitions
2011-10-20 13:14:51 ----D---- C:\Windows\winsxs
2011-10-20 13:14:33 ----D---- C:\Windows\system32\catroot2
2011-10-20 12:31:52 ----D---- C:\Program Files\ATKGFNEX
2011-10-20 11:53:36 ----D---- C:\Windows\system32\RTCOM
2011-10-20 11:53:04 ----A---- C:\Windows\system32\RtkCoInst.dll
2011-10-20 10:36:59 ----D---- C:\Windows\system32\zh-TW
2011-10-20 10:36:59 ----D---- C:\Windows\system32\zh-CN
2011-10-20 10:36:59 ----D---- C:\Windows\system32\sv-SE
2011-10-20 10:36:59 ----D---- C:\Windows\system32\ru-RU
2011-10-20 10:36:59 ----D---- C:\Windows\system32\pt-BR
2011-10-20 10:36:59 ----D---- C:\Windows\system32\pl-PL
2011-10-20 10:36:59 ----D---- C:\Windows\system32\nl-NL
2011-10-20 10:36:58 ----D---- C:\Windows\system32\nb-NO
2011-10-20 10:36:58 ----D---- C:\Windows\system32\ko-KR
2011-10-20 10:36:58 ----D---- C:\Windows\system32\ja-JP
2011-10-20 10:36:58 ----D---- C:\Windows\system32\it-IT
2011-10-20 10:36:58 ----D---- C:\Windows\system32\fr-FR
2011-10-20 10:36:58 ----D---- C:\Windows\system32\fi-FI
2011-10-20 10:36:58 ----D---- C:\Windows\system32\es-ES
2011-10-20 10:36:58 ----D---- C:\Windows\system32\de-DE
2011-10-20 10:36:58 ----D---- C:\Windows\system32\da-DK
2011-10-20 09:42:37 ----D---- C:\Windows\WindowsMobile
2011-10-20 09:42:36 ----D---- C:\Windows\system32\sk-SK
2011-10-20 09:42:35 ----D---- C:\Windows\en-US
2011-10-20 09:42:32 ----D---- C:\Program Files\Windows Defender
2011-10-20 09:42:24 ----D---- C:\Program Files\Common Files\System
2011-10-20 09:42:18 ----D---- C:\Windows\system32\WCN
2011-10-20 09:42:03 ----D---- C:\Program Files\Windows Journal
2011-10-20 09:41:56 ----D---- C:\Windows\IME
2011-10-20 09:41:55 ----D---- C:\Windows\Help
2011-10-20 09:41:34 ----D---- C:\Program Files\Windows Collaboration
2011-10-20 09:41:29 ----D---- C:\Windows\system32\drivers\en-US
2011-10-20 09:41:23 ----D---- C:\Windows\system32\migwiz
2011-10-20 09:41:21 ----D---- C:\Program Files\Windows Media Player
2011-10-20 09:40:13 ----D---- C:\Windows\DigitalLocker
2011-10-20 09:40:10 ----D---- C:\Program Files\Windows Calendar
2011-10-20 09:40:09 ----D---- C:\Program Files\Movie Maker
2011-10-20 09:39:59 ----D---- C:\Program Files\Windows Photo Gallery
2011-10-20 09:39:56 ----D---- C:\Windows\system32\inetsrv
2011-10-20 09:39:56 ----D---- C:\Windows\system32\0409
2011-10-20 09:39:51 ----D---- C:\Windows\system32\sysprep
2011-10-20 09:39:50 ----D---- C:\Program Files\Windows Sidebar
2011-10-20 09:39:49 ----D---- C:\Windows\servicing
2011-10-20 09:39:47 ----SD---- C:\ProgramData\Microsoft
2011-10-20 09:39:43 ----D---- C:\Windows\system32\en
2011-10-20 09:39:42 ----D---- C:\Windows\system32\oobe
2011-10-20 09:39:38 ----D---- C:\Windows\ehome
2011-10-20 09:39:32 ----D---- C:\Program Files\Windows Mail
2011-10-20 09:39:31 ----D---- C:\Windows\system32\DriverStore
2011-10-18 16:16:42 ----RSD---- C:\Windows\assembly
2011-10-13 12:51:46 ----D---- C:\Program Files\Microsoft Office
2011-10-13 12:45:01 ----D---- C:\Program Files\Common Files\Steam
2011-10-13 12:16:53 ----D---- C:\Windows\Microsoft.NET
2011-10-13 11:21:10 ----D---- C:\Windows\rescache
2011-10-13 11:03:38 ----D---- C:\Program Files\Microsoft Silverlight
2011-10-12 23:02:46 ----A---- C:\Windows\system32\mrt.exe
2011-10-12 23:02:33 ----D---- C:\ProgramData\Microsoft Help
2011-10-12 22:51:07 ----A---- C:\Windows\win.ini
2011-10-06 16:49:53 ----HD---- C:\Program Files\InstallShield Installation Information
2011-10-06 16:49:52 ----D---- C:\Program Files\NVIDIA Corporation
2011-10-06 16:48:22 ----RD---- C:\Users
2011-09-22 12:27:08 ----D---- C:\ProgramData\Codemasters
2011-09-22 12:21:19 ----D---- C:\Program Files\OpenAL
2011-09-22 11:13:58 ----D---- C:\Program Files\BRS
2011-09-22 11:13:31 ----A---- C:\Windows\system32\wrap_oal.dll
2011-09-22 11:13:31 ----A---- C:\Windows\system32\OpenAL32.dll
Za vyriešenie problému vopred dakujem, uz som skusal takmer vsetko, obnova systemu sa neda urobit, spybot nic nenasiel, 3 antiviry sa mi nepodarilo rozbehat proste nic..
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Vírus v ntb, pls HELP
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119508
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Vírus v ntb, pls HELP
Restartujte do nouz. režimu a dejte log z ComboFix.
Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe
pote spustte aplikaci pod uctem s administratorskym opravnenim
hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.
v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se
jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine
aplikace ani nic jineho
behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)
upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,
pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k
nezadoucim kolizim s rezidentem antispyware
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?