VIRY.CZ

Dobrý den, chtěla bych vás poprosit o pomoc. Poslední dva dny mám extrémně zpomalený počítač. Dnes při zapínání a ještě před spuštěním windows mi to hlásilo, že je v počítači vir. Hledám pomoc, protože jsem v tomto úplný laik. Předem děkuju.

Windows XP SP 3 (build 2600)
Boot Mode: Normal
Ověření souborů Microsoftu: Ano
Whitelist: Ano
Internet Explorer v7.00.6000.17098 (vista_gdr.110420-1745)
Log vygenerován: 4.8.2011 16:59:42
================================================================

SmallARK
================================================================

Běžící procesy
================================================================

C:\WINDOWS\SYSTEM32\NVSVC32.EXE

Scanner
================================================================
[?] nvsvc32.exe
Non Microsoft v System32:
Soubor 7%

[S] explorer.exe
Spouští se po startu HKLM Winlogon [Shell]

[S] rundll32.exe
Spouští se po startu HKLM Run [NvCplDaemon]

[S] vVX1000.exe
Spouští se po startu HKLM Run [VX1000]

[R] jusched.exe
Spouští se po startu HKLM Run [SunJavaUpdateSched]

[S] ctfmon.exe
Spouští se po startu HKCU Run [CTFMON.EXE]

[R] DTLite.exe
Spouští se po startu HKCU Run [DAEMON Tools Lite]

[R] MSCamS32.exe
Ověřený Microsoft: Ne

Po spuštění
================================================================

HKCU Run
|_ [R][Google Update] C:\Documents and Settings\Vlastník\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe /c
|_ [R][DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe -autorun

HKLM Run
|_ [R][nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe /install
|_ [?][NvCplDaemon] C:\WINDOWS\system32\NvCpl.dll ,NvStartup
|_ [?][NvMediaCenter] C:\WINDOWS\system32\NvMcTray.dll ,NvTaskbarInit
|_ [?][C-Media Mixer] Mixer.exe /startup

HKLM IC
|_ [X][>{60B49E34-C7CC-11D0-8953-00A0C90347FF}] RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP (Soubor nenalezen)
|_ [X][>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS] RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP (Soubor nenalezen)
|_ [?][{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] C:\WINDOWS\INF\mswmp.inf ,PerUserStub
|_ [?][{44BBA842-CC51-11CF-AAFA-00AA00B6015B}] C:\WINDOWS\INF\msnetmtg.inf ,NetMtg.Install.PerUser.NT
|_ [?][{5945c046-1e7d-11d1-bc44-00c04fd912be}] C:\WINDOWS\INF\msmsgs.inf ,BLC.QuietInstall.PerUser
|_ [?][{6BF52A52-394A-11d3-B153-00C04F79FAA6}] C:\WINDOWS\INF\wmp.inf ,PerUserStub
|_ [?][{89820200-ECBD-11cf-8B85-00AA005B4340}] regsvr32.exe /s /n /i:U shell32.dll

Služby (Zobraz běžící: True, Zobraz zastavené: False, Zobraz i bezpečné služby: False)
================================================================
[R] Easybits GO Services for Windows
|_ Cesta: C:\WINDOWS\system32\svchost.exe
| |_ Výrobce: Microsoft Corporation
| |_ Popis: Generic Host Process for Win32 Services
| |_ MD5: BE4A520E29B6391F49E79CCC52044D93
|
|_ ServiceDLL: C:\WINDOWS\system32\ezGOSvc.dll
| |_ Výrobce:
| |_ Popis:
| |_ MD5: DA7ED3A484A2A03FD8AEC1B3A0DB401C
|
|_ Jméno: ezGOSvc
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Win32 Own Process
|_ Dependency:

[X] Java Quick Starter
|_ Cesta: C:\Program Files\Java\jre6\bin\jqs.exe -service -config C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf
| |_ Výrobce:
| |_ Popis:
| |_ MD5:
|
|_ Jméno: JavaQuickStarterService
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Win32 Own Process
|_ Dependency:

[?] NVIDIA Display Driver Service
|_ Cesta: C:\WINDOWS\system32\nvsvc32.exe
| |_ Výrobce: NVIDIA Corporation
| |_ Popis: NVIDIA Driver Helper Service, Version 190.45
| |_ MD5: 896B929603FE45993853DF9A3E5E19B1
|
|_ Jméno: nvsvc
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Win32 Own Process
|_ Dependency:

Ovladače (Zobraz běžící: True, Zobraz zastavené: False, Zobraz i bezpečné služby: False)
================================================================
[?] C-Media PCI Audio Driver (WDM)
|_ Cesta: C:\WINDOWS\system32\drivers\cmaudio.sys
| |_ Výrobce: C-Media Inc
| |_ Popis: C-Media Audio WDM Driver
| |_ MD5: 7BE95CEA894B50D48286B03B82C4618E
|
|_ Jméno: cmpci
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] nv
|_ Cesta: C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
| |_ Výrobce: NVIDIA Corporation
| |_ Popis: NVIDIA Compatible Windows 2000 Miniport Driver, Version 190.45
| |_ MD5: CF49346FAEFFBD046B4DCAF29673E02A
|
|_ Jméno: nv
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

lNetStat
================================================================
Typ: PID Proces Local <-> Remote Status
-----------------------------------------------------------------------------------------
TCP (812) svchost.exe 0.0.0.0:135 LISTENING
TCP (4) Systém 0.0.0.0:445 LISTENING
TCP (404) alg.exe 127.0.0.1:1030 LISTENING
TCP (2920) firefox.exe 127.0.0.1:1093 <-> 127.0.0.1:1094 ESTABLISHED
TCP (2920) firefox.exe 127.0.0.1:1094 <-> 127.0.0.1:1093 ESTABLISHED
TCP (2920) firefox.exe 127.0.0.1:1095 <-> 127.0.0.1:1096 ESTABLISHED
TCP (2920) firefox.exe 127.0.0.1:1096 <-> 127.0.0.1:1095 ESTABLISHED
TCP (1156) jqs.exe 127.0.0.1:5152 LISTENING
TCP (4) Systém 212.96.175.53:139 LISTENING
TCP (2920) firefox.exe 212.96.175.53:1205 <-> 217.31.52.197:80 ESTABLISHED
TCP (2920) firefox.exe 212.96.175.53:1224 <-> 217.31.52.197:80 ESTABLISHED
TCP (156) UPM.exe 212.96.175.53:1233 <-> 109.123.209.238:80 ESTABLISHED
TCP (156) UPM.exe 212.96.175.53:1234 <-> 199.7.52.190:80 ESTABLISHED
UDP (4) Systém 0.0.0.0:445 <-> 199.7.51.190:80 ESTABLISHED
UDP (576) lsass.exe 0.0.0.0:500
UDP (576) lsass.exe 0.0.0.0:4500
UDP (888) svchost.exe 127.0.0.1:123
UDP (1000) svchost.exe 127.0.0.1:1900
UDP (888) svchost.exe 212.96.175.53:123
UDP (4) Systém 212.96.175.53:137
UDP (4) Systém 212.96.175.53:138
UDP (1000) svchost.exe 212.96.175.53:1900

Moduly (Zobraz i bezpečné DLL: False, Jen bez výrobce: True, Zobraz registrované: False)
================================================================
[?] nvapi.dll
|_ Cesta: C:\WINDOWS\system32\nvapi.dll
|_ MD5: 0B85052BA3E74C0904DBF503B2C9B5C4
|_ Výrobce: NVIDIA Corporation
|_ Procesy
|_ nvsvc32.exe (728)

[?] nvmctray.dll
|_ Cesta: C:\WINDOWS\system32\nvmctray.dll
|_ MD5: EF3354311F9A851498E8A4BD8F5CF70E
|_ Výrobce: NVIDIA Corporation
|_ Procesy
|_ rundll32.exe (1456)

================================================================
Ultimate Process Manager v4.1.3 - [ Lodus Software ]

Logfile of random's system information tool 1.09 (written by random/random)
Run by Vlastník at 2011-08-04 17:27:30
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 24 GB (19%) free of 131 GB
Total RAM: 1280 MB (67% free)

HijackThis download failed

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1214440339-1085031214-682003330-1003Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1214440339-1085031214-682003330-1003UA.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\j3asb05b.default

prefs.js - "browser.search.suggest.enabled" - false
prefs.js - "browser.startup.homepage" - "http://seznam.cz/"
prefs.js - "extensions.enabledItems" - "{20a82645-c095-46ed-80e3-08825760534b}:1.1, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, jqs@sun.com:1.0, plugin3@gameplaylabs.com:3.0, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.17"

"{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\plugins\
npdeployJava1.dll
NPOFF12.DLL

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\j3asb05b.default\extensions\
plugin3@gameplaylabs.com
{20a82645-c095-46ed-80e3-08825760534b}

C:\Documents and Settings\Vlastník\Data aplikací\Mozilla\Firefox\Profiles\j3asb05b.default\searchplugins\
ask.uk.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{895F4032-6445-5AA4-956B-F1FDA82D471A}]
BrowserPlugin - C:\Documents and Settings\Vlastník\Local Settings\Data aplikací\GamePlayLabs Plugin\BHO.dll [2011-05-03 435800]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-05-04 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-05-04 79648]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"nwiz"=C:\Program Files\NVIDIA Corporation\nView\nwiz.exe [2009-08-06 1657376]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-08-06 13877248]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-08-06 86016]
"C-Media Mixer"=Mixer.exe /startup []
"LifeCam"=C:\Program Files\Microsoft LifeCam\LifeExp.exe [2007-05-17 279912]
"VX1000"=C:\WINDOWS\vVX1000.exe [2007-04-10 709992]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-04-08 254696]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Google Update"=C:\Documents and Settings\Vlastník\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2011-01-30 136176]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-08-24 133120]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\ICQ7.2\ICQ.exe"="C:\Program Files\ICQ7.2\ICQ.exe:*:Enabled:ICQ"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft LifeCam\LifeCam.exe"="C:\Program Files\Microsoft LifeCam\LifeCam.exe:*:Enabled:LifeCam.exe"
"C:\Program Files\Microsoft LifeCam\LifeExp.exe"="C:\Program Files\Microsoft LifeCam\LifeExp.exe:*:Enabled:LifeExp.exe"
"C:\Program Files\TeamViewer\Version6\TeamViewer.exe"="C:\Program Files\TeamViewer\Version6\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe"="C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe"="C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe:*:Enabled:BlueSoleil"
"C:\Program Files\Emergency 4\Em4.exe"="C:\Program Files\Emergency 4\Em4.exe:*:Enabled:Em4"
"C:\Program Files\ICQ7.5\ICQ.exe"="C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ7.5"
"C:\Documents and Settings\Slejwid\Plocha\WOWKO\World of Warcraft WOTLK 2\WoW-x.x.x.x-4.0.0.12911-EU-Downloader.exe"="C:\Documents and Settings\Slejwid\Plocha\WOWKO\World of Warcraft WOTLK 2\WoW-x.x.x.x-4.0.0.12911-EU-Downloader.exe:*:Enabled:Blizzard Downloader"
"C:\Documents and Settings\Slejwid\Plocha\WOWKO\World of Warcraft WOTLK 2\Launcher.exe"="C:\Documents and Settings\Slejwid\Plocha\WOWKO\World of Warcraft WOTLK 2\Launcher.exe:*:Enabled:Blizzard Launcher"
"C:\Documents and Settings\Slejwid\Plocha\WOWKO\World of Warcraft WOTLK 2\Launcher.patch.exe"="C:\Documents and Settings\Slejwid\Plocha\WOWKO\World of Warcraft WOTLK 2\Launcher.patch.exe:*:Enabled:Blizzard Launcher"
"C:\Documents and Settings\Slejwid\Plocha\WOWKO\World of Warcraft CATACLYSM\Launcher.patch.exe"="C:\Documents and Settings\Slejwid\Plocha\WOWKO\World of Warcraft CATACLYSM\Launcher.patch.exe:*:Enabled:Blizzard Launcher"
"C:\Documents and Settings\Slejwid\Plocha\WOWKO\World of Warcraft CATACLYSM\Launcher.exe"="C:\Documents and Settings\Slejwid\Plocha\WOWKO\World of Warcraft CATACLYSM\Launcher.exe:*:Enabled:Blizzard Launcher"
"C:\Program Files\Farming Simulator 2011\FarmingSimulator2011.exe"="C:\Program Files\Farming Simulator 2011\FarmingSimulator2011.exe:*:Enabled:Farming Simulator 2011"
"C:\Program Files\Farming Simulator 2011\game.exe"="C:\Program Files\Farming Simulator 2011\game.exe:*:Enabled:Farming Simulator 2011"
"C:\Program Files\Flagship Studios\Hellgate London Demo\Launcher.exe"="C:\Program Files\Flagship Studios\Hellgate London Demo\Launcher.exe:*:Enabled:Hellgate: London"
"C:\Program Files\Quake III Arena\quake3.exe"="C:\Program Files\Quake III Arena\quake3.exe:*:Enabled:quake3"
"C:\Program Files\Downvision\DownVision.exe"="C:\Program Files\Downvision\DownVision.exe:*:Enabled:DownVision"
"C:\Program Files\World_of_Tanks_closed_Beta\WorldOfTanks.exe"="C:\Program Files\World_of_Tanks_closed_Beta\WorldOfTanks.exe:*:Enabled:World of Tanks"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\ICQ7.5\ICQ.exe"="C:\Program Files\ICQ7.5\ICQ.exe:*:Enabled:ICQ7.5"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\System32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"mixer"=wdmaud.drv
"vidc.XVID"=xvidvfw.dll

======List of files/folders created in the last 1 month======

2011-08-04 17:27:30 ----D---- C:\rsit
2011-08-04 17:27:30 ----D---- C:\Program Files\trend micro
2011-08-04 16:57:29 ----D---- C:\Program Files\Ultimate Process Manager
2011-08-04 00:21:54 ----A---- C:\AutoRun_Log(0021).txt
2011-08-03 16:42:20 ----A---- C:\WINDOWS\system32\xvidvfw.dll
2011-08-03 16:42:20 ----A---- C:\WINDOWS\system32\xvidcore.dll
2011-08-03 16:42:17 ----D---- C:\Program Files\Easiestutils
2011-08-02 00:39:24 ----D---- C:\Program Files\MonitorDriver
2011-07-31 01:17:15 ----A---- C:\AutoRun_Log(0020).txt
2011-07-30 03:22:09 ----A---- C:\AutoRun_Log(0019).txt
2011-07-30 03:17:49 ----A---- C:\AutoRun_Log(0018).txt
2011-07-30 03:11:52 ----A---- C:\AutoRun_Log(0017).txt
2011-07-26 12:00:52 ----A---- C:\AutoRun_Log(0016).txt
2011-07-26 11:53:22 ----A---- C:\AutoRun_Log(0015).txt
2011-07-21 12:13:53 ----A---- C:\AutoRun_Log(0014).txt
2011-07-21 00:32:33 ----A---- C:\AutoRun_Log(0013).txt
2011-07-20 01:21:21 ----A---- C:\AutoRun_Log(0012).txt
2011-07-20 01:17:19 ----A---- C:\AutoRun_Log(0011).txt
2011-07-16 13:07:11 ----D---- C:\Documents and Settings\Vlastník\Data aplikací\wargaming.net
2011-07-16 13:06:31 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2011-07-16 13:06:30 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2011-07-16 13:06:30 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2011-07-16 13:06:30 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2011-07-16 13:06:29 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2011-07-16 13:06:29 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2011-07-16 13:06:28 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2011-07-16 13:06:28 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2011-07-16 13:06:27 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2011-07-16 13:06:27 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2011-07-16 13:06:27 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2011-07-16 13:06:27 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2011-07-16 13:06:26 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2011-07-16 13:06:26 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2011-07-16 13:06:25 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2011-07-16 13:06:25 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2011-07-16 13:06:24 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2011-07-16 13:06:24 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2011-07-16 13:06:23 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2011-07-16 13:06:23 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2011-07-16 13:06:23 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2011-07-16 13:06:22 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2011-07-16 13:06:21 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2011-07-16 13:06:21 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2011-07-16 13:06:21 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2011-07-16 13:06:21 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2011-07-16 13:06:20 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2011-07-16 13:06:20 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2011-07-16 13:06:19 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2011-07-16 13:06:19 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2011-07-16 13:06:19 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2011-07-16 13:06:18 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2011-07-16 13:06:18 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2011-07-16 13:06:18 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2011-07-16 13:06:18 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2011-07-16 13:06:17 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2011-07-16 13:06:17 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2011-07-16 13:06:17 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2011-07-16 13:06:16 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2011-07-16 13:06:15 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2011-07-16 13:06:15 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2011-07-16 13:06:15 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2011-07-16 13:06:15 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2011-07-16 13:06:14 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2011-07-16 13:06:14 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2011-07-16 13:06:13 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2011-07-16 13:06:13 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2011-07-16 13:06:13 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2011-07-16 13:06:12 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2011-07-16 13:06:12 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2011-07-16 13:06:12 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2011-07-16 13:06:11 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2011-07-16 13:06:11 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2011-07-16 13:06:10 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2011-07-16 13:06:10 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2011-07-16 13:06:09 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2011-07-16 13:06:08 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2011-07-16 13:06:08 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2011-07-16 13:06:08 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2011-07-16 13:06:07 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2011-07-16 13:06:07 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2011-07-16 13:06:07 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2011-07-16 13:06:04 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2011-07-16 13:06:03 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2011-07-16 13:06:03 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2011-07-16 13:06:02 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2011-07-16 13:06:01 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2011-07-16 13:06:01 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2011-07-16 13:06:00 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2011-07-13 09:39:43 ----HDC---- C:\WINDOWS\$NtUninstallKB2507938$
2011-07-13 09:35:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2555917$
2011-07-11 00:28:42 ----A---- C:\AutoRun_Log(0010).txt
2011-07-09 14:07:57 ----D---- C:\Program Files\Mplayer
2011-07-09 14:06:37 ----D---- C:\Program Files\Quake III Arena
2011-07-09 14:06:17 ----A---- C:\WINDOWS\QIII.INI
2011-07-07 11:01:57 ----D---- C:\Program Files\Common Files\Java
2011-07-07 11:01:40 ----A---- C:\WINDOWS\system32\javaws.exe
2011-07-07 11:01:40 ----A---- C:\WINDOWS\system32\javaw.exe
2011-07-07 11:01:40 ----A---- C:\WINDOWS\system32\java.exe

======List of files/folders modified in the last 1 month======

2011-08-04 17:27:37 ----D---- C:\WINDOWS\Prefetch
2011-08-04 17:27:30 ----RD---- C:\Program Files
2011-08-04 16:57:54 ----D---- C:\WINDOWS\system32\CatRoot2
2011-08-04 16:38:28 ----D---- C:\WINDOWS\Temp
2011-08-04 16:01:20 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-08-04 13:29:05 ----D---- C:\Documents and Settings\Vlastník\Data aplikací\Skype
2011-08-03 16:42:20 ----D---- C:\WINDOWS\system32
2011-08-03 08:07:34 ----D---- C:\Program Files\WinRAR
2011-08-02 00:53:56 ----HD---- C:\WINDOWS\inf
2011-08-02 00:44:01 ----D---- C:\WINDOWS
2011-08-02 00:39:41 ----SHD---- C:\WINDOWS\Installer
2011-08-02 00:39:40 ----D---- C:\WINDOWS\WinSxS
2011-08-02 00:39:30 ----HD---- C:\Program Files\InstallShield Installation Information
2011-08-01 12:13:39 ----SD---- C:\Documents and Settings\Vlastník\Data aplikací\Microsoft
2011-08-01 12:01:35 ----A---- C:\WINDOWS\system.ini
2011-08-01 07:58:56 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\DAEMON Tools Lite
2011-08-01 01:03:59 ----D---- C:\Documents and Settings\Vlastník\Data aplikací\ICQ
2011-07-31 12:06:06 ----D---- C:\Program Files\World of Warcraft
2011-07-21 11:21:29 ----D---- C:\Program Files\Mozilla Firefox
2011-07-18 16:00:24 ----RD---- C:\Program Files\Skype
2011-07-18 16:00:23 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Skype
2011-07-18 16:00:01 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Easybits GO
2011-07-18 15:59:40 ----D---- C:\Documents and Settings\Vlastník\Data aplikací\go
2011-07-16 14:29:39 ----D---- C:\WINDOWS\system32\DirectX
2011-07-16 14:28:59 ----RSD---- C:\WINDOWS\assembly
2011-07-13 10:30:23 ----D---- C:\Documents and Settings\All Users.WINDOWS\Data aplikací\Skype Extras
2011-07-13 09:39:45 ----RSHDC---- C:\WINDOWS\system32\dllcache
2011-07-13 09:36:07 ----A---- C:\WINDOWS\system32\MRT.exe
2011-07-13 09:36:02 ----A---- C:\WINDOWS\imsins.BAK
2011-07-13 08:53:12 ----HD---- C:\WINDOWS\$hf_mig$
2011-07-07 11:01:57 ----D---- C:\Program Files\Common Files
2011-07-07 11:01:35 ----D---- C:\Program Files\Java

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 sisagp;Filtr SIS sběrnice AGP ; C:\WINDOWS\System32\DRIVERS\sisagp.sys [2008-04-13 40960]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys [2011-05-14 218688]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\System32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R3 cmpci;C-Media PCI Audio Driver (WDM); C:\WINDOWS\system32\drivers\cmaudio.sys [2001-10-30 280782]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-08-06 7753888]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\WINDOWS\System32\Drivers\btcusb.sys [2007-06-24 38920]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 usbbus;LGE Mobile Composite USB Device; C:\WINDOWS\system32\DRIVERS\lgusbbus.sys [2008-11-11 13056]
S3 UsbDiag;LGE Mobile USB Serial Port; C:\WINDOWS\system32\DRIVERS\lgusbdiag.sys [2008-11-11 19968]
S3 USBModem;LGE Mobile USB Modem; C:\WINDOWS\system32\DRIVERS\lgusbmodem.sys [2008-11-11 24832]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 VX1000;VX-1000; C:\WINDOWS\system32\DRIVERS\VX1000.sys [2007-04-10 1966312]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ezGOSvc;Easybits GO Services for Windows; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-05-04 153376]
R2 MSCamSvc;MSCamSvc; C:\Program Files\Microsoft LifeCam\MSCamS32.exe [2007-05-17 271720]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-08-06 168004]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Služba Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S4 NetTcpPortSharing;Služba sdílení portů Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

Hezký podvečer

Spusťte combofix podle tohoto návodu
http://www.bleepingcomputer.com/combofi ... t-combofix

Bohužel mám problém. Internet je tak pomalý, že stahování trvá 2 hodiny a obvykle se mi to sekne po 10 minutách. Vůbec nevím, co s tím.

I v nouzovém režimu?

Vůbec nevím, jak to myslíte. Můžete mi prosím popsat cestu, jak se tam dostanu a co bych tam měla dělat?

Restartujte počítač a mačkejte F8 - vyberte nouzový režim s prací v síti. A pak už pracujete jak v normálním režimu.

VIRY.CZ

Vir v počítači a zpomalený internet

Vir v počítači a zpomalený internet

Re: Vir v počítači a zpomalený internet

Re: Vir v počítači a zpomalený internet

Re: Vir v počítači a zpomalený internet

Re: Vir v počítači a zpomalený internet

Re: Vir v počítači a zpomalený internet

Re: Vir v počítači a zpomalený internet