Zpomalení pc (grafika?), alert viru, moc prosím o pomoc

[wise]

Dobrý den,

moc Vás prosím o pomoc, instaloval jsem hru Miror's Edge a bohužel nešla. Hledal jsem na internetu řešení a zkoušel co pomůže. Update ovladačů grafiky, Update PhysX atd. a od té doby se počítač zasekává a (na což mě málem zabila) přítelky se začalo sekat The Sims 3 . V jednom návodu bylo odinstalovat PhysX, tak jsem to udělal a hra běžela, restartoval jsem ale PC a už nešla. Stáhnu jsem driver PhysX a chtěl nainstalovat, ale napsalo to, že už tam je (ikdyž jsem ho odinstaloval). A dneska mi to adware hodil alert, že je tu vir. Mnohokrát děkuji za nějakou radu.


Logfile of random's system information tool 1.08 (written by random/random)
Run by wise at 2011-02-18 23:28:49
Microsoft Windows 7 Professional
System drive C: has 5 GB (11%) free of 46 GB
Total RAM: 2047 MB (55% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:29:03, on 18.2.2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16722)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\rundll32.exe
C:\Program Files\Creative\Volume Panel\VolPanlu.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\DivX\DivX Plus Web Player\DDMService.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
D:\Steam\Steam.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Pando Networks\Media Booster\PMB.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Users\wise\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\wise\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\wise\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\wise\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\wise\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\wise\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\wise\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\wise\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\wise\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\wise\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\wise\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\wise\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\wise\Downloads\RSIT.exe
C:\Program Files\trend micro\wise.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = my.daemon-search.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
O2 - BHO: Use the DivX Plus Web Player to watch web videos with less interruptions and smoother playback on supported sites - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Creative SB Monitoring Utility] RunDll32 sbavmon.dll,SBAVMonitor
O4 - HKLM\..\Run: [VolPanel] "C:\Program Files\Creative\Volume Panel\VolPanlu.exe" /r
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [DivX Download Manager] "C:\Program Files\DivX\DivX Plus Web Player\DDmService.exe" start
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\wise\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Steam] "D:\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [EA Core] "C:\Program Files\Electronic Arts\EADM\Core.exe" -silent
O4 - HKCU\..\Run: [Pando Media Booster] C:\Program Files\Pando Networks\Media Booster\PMB.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: OpenOffice.org 3.0.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Creative ALchemy AL6 Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files\Creative\Shared Files\CTAudSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TeamViewer 6 (TeamViewer6) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe
O23 - Service: wampapache - Apache Software Foundation - c:\wamp\bin\apache\apache2.2.17\bin\httpd.exe
O23 - Service: wampmysqld - Unknown owner - c:\wamp\bin\mysql\mysql5.5.8\bin\mysqld.exe

--
End of file - 7500 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-60759365-597823563-2896440947-1001Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-60759365-597823563-2896440947-1001UA.job
C:\Windows\tasks\Norton Security Scan for wise.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-11-10 62376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll [2010-12-08 3123072]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{593DDEC6-7468-4cdd-90E1-42DADAA222E9}]
DivX HiQ - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll [2010-12-08 3123072]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Plug-In - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-11-22 1242504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-01-03 41760]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Creative SB Monitoring Utility"=RunDll32 sbavmon.dll,SBAVMonitor []
"VolPanel"=C:\Program Files\Creative\Volume Panel\VolPanlu.exe [2009-07-07 241789]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]
"DivXUpdate"=C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2010-12-09 1226608]
"DivX Download Manager"=C:\Program Files\DivX\DivX Plus Web Player\DDmService.exe [2010-12-08 63360]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe [2010-11-10 35736]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-11-10 932288]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Users\wise\AppData\Local\Google\Update\GoogleUpdate.exe [2010-12-22 136176]
"Steam"=D:\Steam\steam.exe [2010-12-28 1242448]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2011-01-05 1305408]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2011-01-03 15028104]
"EA Core"=C:\Program Files\Electronic Arts\EADM\Core.exe -silent []
"Pando Media Booster"=C:\Program Files\Pando Networks\Media Booster\PMB.exe [2011-01-19 3046808]

C:\Users\wise\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
OpenOffice.org 3.0.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2011-02-18 23:28:49 ----D---- C:\rsit
2011-02-18 23:28:49 ----D---- C:\Program Files\trend micro
2011-02-10 06:10:57 ----D---- C:\Users\wise\AppData\Roaming\NVIDIA
2011-02-10 06:05:43 ----D---- C:\ProgramData\NVIDIA Corporation
2011-02-10 06:02:24 ----A---- C:\Windows\system32\OpenCL.dll
2011-02-10 06:02:24 ----A---- C:\Windows\system32\nvoglv32.dll
2011-02-10 06:02:24 ----A---- C:\Windows\system32\nvgenco322040.dll
2011-02-10 06:02:24 ----A---- C:\Windows\system32\nvdispco322090.dll
2011-02-10 06:02:24 ----A---- C:\Windows\system32\nvd3dum.dll
2011-02-10 06:02:24 ----A---- C:\Windows\system32\nvcuvid.dll
2011-02-10 06:02:24 ----A---- C:\Windows\system32\nvcuvenc.dll
2011-02-10 06:02:24 ----A---- C:\Windows\system32\nvcuda.dll
2011-02-10 06:02:24 ----A---- C:\Windows\system32\nvcompiler.dll
2011-02-10 06:02:24 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2011-02-10 06:02:15 ----D---- C:\Program Files\NVIDIA Corporation
2011-02-10 05:51:40 ----D---- C:\Windows\system32\appmgmt
2011-02-10 05:21:08 ----D---- C:\Windows\E4D153288C89484BB9AAF5BE9EA6D01C.TMP
2011-02-09 21:18:36 ----A---- C:\Windows\system32\win32k.sys
2011-02-09 21:18:33 ----A---- C:\Windows\system32\kerberos.dll
2011-02-09 21:18:32 ----A---- C:\Windows\system32\vbscript.dll
2011-02-09 21:18:32 ----A---- C:\Windows\system32\jscript.dll
2011-02-09 21:18:31 ----A---- C:\Windows\system32\mshtml.dll
2011-02-09 21:18:28 ----A---- C:\Windows\system32\mstime.dll
2011-02-09 21:18:28 ----A---- C:\Windows\system32\mshtmled.dll
2011-02-09 21:18:28 ----A---- C:\Windows\system32\msfeedssync.exe
2011-02-09 21:18:28 ----A---- C:\Windows\system32\msfeedsbs.dll
2011-02-09 21:18:28 ----A---- C:\Windows\system32\msfeeds.dll
2011-02-09 21:18:28 ----A---- C:\Windows\system32\licmgr10.dll
2011-02-09 21:18:28 ----A---- C:\Windows\system32\iertutil.dll
2011-02-09 21:18:28 ----A---- C:\Windows\system32\iepeers.dll
2011-02-09 21:18:28 ----A---- C:\Windows\system32\iedkcs32.dll
2011-02-09 21:17:35 ----A---- C:\Windows\system32\atmlib.dll
2011-02-09 21:17:35 ----A---- C:\Windows\system32\atmfd.dll
2011-02-09 21:17:32 ----A---- C:\Windows\system32\ntoskrnl.exe
2011-02-09 21:17:32 ----A---- C:\Windows\system32\ntkrnlpa.exe
2011-02-09 21:17:32 ----A---- C:\Windows\system32\ntdll.dll
2011-02-09 21:17:17 ----A---- C:\Windows\system32\urlmon.dll
2011-02-09 21:17:17 ----A---- C:\Windows\system32\upnp.dll
2011-02-09 21:17:16 ----A---- C:\Windows\system32\wininet.dll
2011-02-09 21:17:16 ----A---- C:\Windows\system32\winhttp.dll
2011-02-09 21:17:16 ----A---- C:\Windows\system32\WebClnt.dll
2011-02-09 21:17:16 ----A---- C:\Windows\system32\msxml6.dll
2011-02-09 21:17:16 ----A---- C:\Windows\system32\msxml3.dll
2011-02-09 21:17:16 ----A---- C:\Windows\system32\ieframe.dll
2011-02-09 21:17:16 ----A---- C:\Windows\system32\davclnt.dll
2011-02-09 21:17:15 ----A---- C:\Windows\system32\wscsvc.dll
2011-02-09 21:17:15 ----A---- C:\Windows\system32\wscapi.dll
2011-02-09 21:17:15 ----A---- C:\Windows\system32\slwga.dll
2011-02-09 21:17:15 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2011-02-08 13:58:05 ----D---- C:\Program Files\Microsoft.NET
2011-01-29 18:42:00 ----D---- C:\wamp
2011-01-29 18:07:54 ----ASH---- C:\pagefile.sys
2011-01-28 16:23:29 ----D---- C:\Program Files\Google
2011-01-23 20:36:58 ----A---- C:\Windows\system32\MRT.exe
2011-01-20 05:21:16 ----D---- C:\Windows\system32\URTTEMP
2011-01-19 21:52:53 ----D---- C:\ProgramData\PMB Files
2011-01-19 21:52:39 ----D---- C:\Program Files\Pando Networks

======List of files/folders modified in the last 1 months======

2011-02-18 23:29:00 ----D---- C:\Windows\Prefetch
2011-02-18 23:28:51 ----D---- C:\Windows\Temp
2011-02-18 23:28:49 ----RD---- C:\Program Files
2011-02-18 23:25:15 ----SHD---- C:\System Volume Information
2011-02-18 23:18:06 ----D---- C:\Users\wise\AppData\Roaming\Skype
2011-02-18 22:57:36 ----D---- C:\Windows\system32\config
2011-02-18 22:44:30 ----D---- C:\ProgramData\NVIDIA
2011-02-18 22:44:19 ----D---- C:\Windows\system32\drivers
2011-02-18 22:33:47 ----D---- C:\Users\wise\AppData\Roaming\skypePM
2011-02-17 22:14:29 ----D---- C:\Windows\System32
2011-02-17 22:14:25 ----A---- C:\Windows\system32\PnkBstrB.exe
2011-02-17 01:22:27 ----D---- C:\Windows\system32\catroot2
2011-02-14 22:41:48 ----SHD---- C:\Windows\Installer
2011-02-14 22:41:03 ----D---- C:\Windows
2011-02-14 00:01:11 ----D---- C:\Windows\inf
2011-02-14 00:01:11 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-02-11 11:17:52 ----D---- C:\Windows\system32\catroot
2011-02-11 11:17:51 ----D---- C:\Windows\system32\DriverStore
2011-02-10 06:05:43 ----HD---- C:\ProgramData
2011-02-10 05:55:57 ----D---- C:\NVIDIA
2011-02-10 05:51:40 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2011-02-10 05:41:37 ----A---- C:\Windows\system32\wrap_oal.dll
2011-02-10 05:41:37 ----A---- C:\Windows\system32\OpenAL32.dll
2011-02-10 05:22:08 ----RSD---- C:\Windows\assembly
2011-02-10 03:21:06 ----D---- C:\Windows\winsxs
2011-02-10 03:19:15 ----D---- C:\Program Files\Internet Explorer
2011-02-08 14:04:36 ----D---- C:\Windows\Microsoft.NET
2011-02-08 14:00:05 ----D---- C:\Windows\system32\cs-CZ
2011-02-08 13:58:06 ----D---- C:\Windows\system32\en-US
2011-02-06 18:23:41 ----HD---- C:\Program Files\InstallShield Installation Information
2011-02-05 21:49:25 ----D---- C:\Windows\Logs
2011-02-05 08:37:45 ----D---- C:\Program Files\Electronic Arts
2011-01-29 19:43:28 ----D---- C:\Users\wise\AppData\Roaming\FileZilla
2011-01-28 16:23:41 ----D---- C:\Windows\Tasks
2011-01-28 16:23:41 ----D---- C:\Windows\system32\Tasks
2011-01-25 15:29:45 ----D---- C:\Program Files\Common Files\Symantec Shared
2011-01-24 21:34:31 ----D---- C:\Dev-Cpp
2011-01-23 20:50:02 ----SD---- C:\ProgramData\Microsoft
2011-01-23 20:50:00 ----D---- C:\Windows\system32\drivers\UMDF
2011-01-23 20:36:59 ----D---- C:\Windows\debug
2011-01-20 09:18:05 ----D---- C:\Windows\system32\wdi
2011-01-20 05:23:09 ----D---- C:\Windows\Registration
2011-01-19 15:49:13 ----D---- C:\Users\wise\AppData\Roaming\TS3Client

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-12-22 691696]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 387584]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-01-07 218176]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R3 ksaud;Creative USB Audio Driver; C:\Windows\system32\drivers\ksaud.sys [2009-12-15 899712]
R3 RTL8167;Ovladač Realtek 8167 NT; C:\Windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 androidusb;ADB Interface Driver; C:\Windows\System32\Drivers\androidusb.sys [2010-04-29 26112]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 KMWDFILTERx86;HIDServiceDesc; C:\Windows\system32\DRIVERS\KMWDFILTER.sys [2009-04-29 25088]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 133120]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 28224]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 175824]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 17920]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 CTAudSvcService;Creative Audio Service; C:\Program Files\Creative\Shared Files\CTAudSvc.exe [2009-07-31 307200]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2011-01-07 608872]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2010-12-29 75136]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-01-07 378984]
R2 TeamViewer6;TeamViewer 6; C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe [2010-12-07 2228008]
R3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2011-01-12 407336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-12-22 136176]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2009-06-10 31064]
S3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [2011-01-02 79360]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2011-01-02 79360]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 wampapache;wampapache; c:\wamp\bin\apache\apache2.2.17\bin\httpd.exe [2010-12-31 20549]
S3 wampmysqld;wampmysqld; c:\wamp\bin\mysql\mysql5.5.8\bin\mysqld.exe [2010-12-31 8133120]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-12-22 1343400]

-----------------EOF-----------------

[Rudy]

Zdravím!
Log vypadá OK. Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.

[wise]

:/


Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Verze databáze: 4052

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

19.2.2011 15:51:14
mbam-log-2011-02-19 (15-51-14).txt

Typ skenu: Úplný sken (C:\|D:\|)
Skenované objekty: 261778
Uplynulý čas: 45 minuta(y), 23 sekunda(y)

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče registru: 0
Infikované hodnoty registru: 0
Infikované datové položky registru: 0
Infikované složky: 0
Infikované soubory: 0

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)

[Rudy]

MBAM nic nenašel. Dejte log z ComboFix.

Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode, pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k nezadoucim kolizim s rezidentem antispyware

[wise]

ComboFix 11-02-19.01 - wise 19.02.2011 23:41:53.1.2 - x86
Microsoft Windows 7 Professional 6.1.7600.0.1250.420.1029.18.2047.1192 [GMT 1:00]
Spuštěný z: c:\users\wise\Downloads\ComboFix.exe
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\users\wise\AppData\Roaming\Local
c:\users\wise\AppData\Roaming\Local\Temp\DDM\Settings\.ddr
c:\users\wise\AppData\Roaming\Local\Temp\DDM\Settings\1.ddi
c:\users\wise\AppData\Roaming\Local\Temp\DDM\Settings\2.ddi
c:\users\wise\AppData\Roaming\Local\Temp\DDM\Settings\3.ddi
c:\users\wise\AppData\Roaming\Local\Temp\DDM\Settings\4.ddi
c:\users\wise\AppData\Roaming\Local\Temp\DDM\Settings\5.ddi
c:\users\wise\AppData\Roaming\Local\Temp\DDM\Settings\joizrkfzfofy.avi.ddr
c:\users\wise\AppData\Roaming\Local\Temp\DDM\Settings\kmwevxzodawa.avi.ddr
c:\users\wise\AppData\Roaming\Local\Temp\DDM\Settings\senrkyqpbwho.avi.ddr
c:\users\wise\AppData\Roaming\Local\Temp\DDM\Settings\settings.ddi
c:\users\wise\AppData\Roaming\Local\Temp\DDM\Settings\Temporary Downloaded Files\.ddp
c:\users\wise\AppData\Roaming\Local\Temp\DDM\Settings\Temporary Downloaded Files\joizrkfzfofy(10).avi
c:\users\wise\AppData\Roaming\Local\Temp\DDM\Settings\Temporary Downloaded Files\joizrkfzfofy(11).avi
c:\users\wise\AppData\Roaming\Local\Temp\DDM\Settings\Temporary Downloaded Files\joizrkfzfofy(12).avi
c:\users\wise\AppData\Roaming\Local\Temp\DDM\Settings\Temporary Downloaded Files\joizrkfzfofy(13).avi
c:\users\wise\AppData\Roaming\Local\Temp\DDM\Settings\Temporary Downloaded Files\joizrkfzfofy(14).avi
c:\users\wise\AppData\Roaming\Local\Temp\DDM\Settings\Temporary Downloaded Files\joizrkfzfofy(2).avi
c:\users\wise\AppData\Roaming\Local\Temp\DDM\Settings\Temporary Downloaded Files\joizrkfzfofy(3).avi
c:\users\wise\AppData\Roaming\Local\Temp\DDM\Settings\Temporary Downloaded Files\joizrkfzfofy(4).avi
c:\users\wise\AppData\Roaming\Local\Temp\DDM\Settings\Temporary Downloaded Files\joizrkfzfofy(5).avi
c:\users\wise\AppData\Roaming\Local\Temp\DDM\Settings\Temporary Downloaded Files\joizrkfzfofy(6).avi
c:\users\wise\AppData\Roaming\Local\Temp\DDM\Settings\Temporary Downloaded Files\joizrkfzfofy(7).avi
c:\users\wise\AppData\Roaming\Local\Temp\DDM\Settings\Temporary Downloaded Files\joizrkfzfofy(8).avi
c:\users\wise\AppData\Roaming\Local\Temp\DDM\Settings\Temporary Downloaded Files\joizrkfzfofy(9).avi
c:\users\wise\AppData\Roaming\Local\Temp\DDM\Settings\Temporary Downloaded Files\joizrkfzfofy.avi
c:\users\wise\AppData\Roaming\Local\Temp\DDM\Settings\Temporary Downloaded Files\joizrkfzfofy.avi.ddp
c:\users\wise\AppData\Roaming\Local\Temp\DDM\Settings\Temporary Downloaded Files\kmwevxzodawa.avi
c:\users\wise\AppData\Roaming\Local\Temp\DDM\Settings\Temporary Downloaded Files\ritclrsmuvzk.avi(2).ddp
c:\users\wise\AppData\Roaming\Local\Temp\DDM\Settings\Temporary Downloaded Files\ritclrsmuvzk.avi(3).ddp
c:\users\wise\AppData\Roaming\Local\Temp\DDM\Settings\Temporary Downloaded Files\ritclrsmuvzk.avi(4).ddp
c:\users\wise\AppData\Roaming\Local\Temp\DDM\Settings\Temporary Downloaded Files\ritclrsmuvzk.avi(5).ddp
c:\users\wise\AppData\Roaming\Local\Temp\DDM\Settings\Temporary Downloaded Files\ritclrsmuvzk.avi(6).ddp
c:\users\wise\AppData\Roaming\Local\Temp\DDM\Settings\Temporary Downloaded Files\ritclrsmuvzk.avi.ddp
c:\users\wise\AppData\Roaming\Local\Temp\DDM\Settings\Temporary Downloaded Files\senrkyqpbwho.avi
c:\users\wise\AppData\Roaming\Local\Temp\DDM\Settings\Temporary Downloaded Files\videoplayback
c:\users\wise\AppData\Roaming\Local\Temp\DDM\Settings\videoplayback.ddr

.
((((((((((((((((((((((((( Soubory vytvořené od 2011-01-19 do 2011-02-19 )))))))))))))))))))))))))))))))
.

2011-02-19 22:48 . 2011-02-19 22:48 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-02-19 14:05 . 2011-02-19 14:05 -------- d-----w- c:\users\wise\AppData\Roaming\Malwarebytes
2011-02-19 14:05 . 2011-02-19 14:05 -------- d-----w- c:\programdata\Malwarebytes
2011-02-19 14:05 . 2010-04-29 14:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-02-19 14:05 . 2011-02-19 14:05 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-02-19 14:05 . 2010-04-29 14:39 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-02-19 13:50 . 2011-02-19 13:50 -------- d-----w- c:\program files\Common Files\Java
2011-02-18 22:28 . 2011-02-18 22:29 -------- d-----w- C:\rsit
2011-02-18 22:28 . 2011-02-18 22:29 -------- d-----w- c:\program files\trend micro
2011-02-18 21:37 . 2011-01-13 09:41 5890896 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{58A37A54-B0B2-4A60-A37F-206C04C37735}\mpengine.dll
2011-02-10 05:10 . 2011-02-10 05:10 -------- d-----w- c:\users\wise\AppData\Roaming\NVIDIA
2011-02-10 05:05 . 2011-02-10 05:05 -------- d-----w- c:\programdata\NVIDIA Corporation
2011-02-10 05:02 . 2011-01-08 03:27 941160 ----a-w- c:\windows\system32\nvdispco322090.dll
2011-02-10 05:02 . 2011-01-08 03:27 837736 ----a-w- c:\windows\system32\nvgenco322040.dll
2011-02-10 05:02 . 2011-01-08 03:27 57960 ----a-w- c:\windows\system32\OpenCL.dll
2011-02-10 05:02 . 2011-01-08 03:27 4941928 ----a-w- c:\windows\system32\nvcuda.dll
2011-02-10 05:02 . 2011-01-08 03:27 2895976 ----a-w- c:\windows\system32\nvcuvid.dll
2011-02-10 05:02 . 2011-01-08 03:27 2251368 ----a-w- c:\windows\system32\nvcuvenc.dll
2011-02-10 05:02 . 2011-01-08 03:27 15047272 ----a-w- c:\windows\system32\nvoglv32.dll
2011-02-10 05:02 . 2011-01-08 03:27 13011560 ----a-w- c:\windows\system32\nvcompiler.dll
2011-02-10 05:02 . 2011-01-08 03:27 10467656 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2011-02-10 05:02 . 2011-01-08 03:27 10078312 ----a-w- c:\windows\system32\nvd3dum.dll
2011-02-10 05:02 . 2011-02-10 05:06 -------- d-----w- c:\program files\NVIDIA Corporation
2011-02-10 04:33 . 2004-10-22 01:18 749568 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iKernel.dll
2011-02-10 04:33 . 2004-10-22 01:17 69715 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\ctor.dll
2011-02-10 04:33 . 2004-10-22 01:17 274432 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iscript.dll
2011-02-10 04:33 . 2004-10-22 01:16 180224 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iuser.dll
2011-02-10 04:33 . 2004-10-22 01:16 5632 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\DotNetInstaller.exe
2011-02-10 04:33 . 2011-02-10 04:33 323716 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\setup.dll
2011-02-10 04:33 . 2011-02-10 04:33 192644 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iGdi.dll
2011-02-10 04:21 . 2011-02-10 04:21 -------- d-----w- c:\windows\E4D153288C89484BB9AAF5BE9EA6D01C.TMP
2011-02-09 20:17 . 2011-01-07 07:27 34304 ----a-w- c:\windows\system32\atmlib.dll
2011-02-08 12:58 . 2011-02-08 12:58 -------- d-----w- c:\program files\Microsoft.NET
2011-01-29 17:42 . 2011-01-29 17:44 -------- d-----w- C:\wamp
2011-01-28 15:23 . 2011-01-28 15:24 -------- d-----w- c:\program files\Google

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-02-19 13:52 . 2010-12-29 07:27 138416 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2011-02-19 13:52 . 2010-12-29 07:27 270904 ----a-w- c:\windows\system32\PnkBstrB.xtr
2011-02-19 13:52 . 2010-12-29 07:26 270904 ----a-w- c:\windows\system32\PnkBstrB.exe
2011-02-19 13:50 . 2010-12-29 07:26 215128 ----a-w- c:\windows\system32\PnkBstrB.ex0
2011-02-10 04:41 . 2011-01-02 12:53 444952 ----a-w- c:\windows\system32\wrap_oal.dll
2011-02-10 04:41 . 2011-01-02 12:53 109080 ----a-w- c:\windows\system32\OpenAL32.dll
2011-02-02 20:40 . 2011-01-03 11:48 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-01-08 03:27 . 2011-02-10 05:02 10920 ----a-w- c:\windows\system32\drivers\nvBridge.kmd
2011-01-08 03:27 . 2010-12-29 07:39 1965672 ----a-w- c:\windows\system32\nvapi.dll
2011-01-08 03:27 . 2009-07-13 22:09 5653096 ----a-w- c:\windows\system32\nvwgf2um.dll
2011-01-07 20:06 . 2011-01-07 20:06 580200 ----a-w- c:\windows\system32\easyUpdatusAPIU.dll
2011-01-07 20:06 . 2011-01-07 20:06 3597416 ----a-w- c:\windows\system32\nvcpl.dll
2011-01-07 20:06 . 2011-01-07 20:06 2620520 ----a-w- c:\windows\system32\nvsvc.dll
2011-01-07 20:06 . 2011-01-07 20:06 66664 ----a-w- c:\windows\system32\nvshext.dll
2011-01-07 20:06 . 2011-01-07 20:06 608872 ----a-w- c:\windows\system32\nvvsvc.exe
2011-01-07 20:06 . 2011-01-07 20:06 111208 ----a-w- c:\windows\system32\nvmctray.dll
2011-01-07 01:25 . 2011-01-07 01:25 218176 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2010-12-29 07:57 . 2010-12-29 07:26 75136 ----a-w- c:\windows\system32\PnkBstrA.exe
2010-12-29 07:27 . 2010-12-29 07:27 138056 ----a-w- c:\users\wise\AppData\Roaming\PnkBstrK.sys
2010-12-29 07:26 . 2010-12-29 07:26 2434856 ----a-w- c:\windows\system32\pbsvc_bc2.exe
2010-12-22 15:05 . 2010-12-22 15:05 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Google Update"="c:\users\wise\AppData\Local\Google\Update\GoogleUpdate.exe" [2010-12-22 136176]
"Steam"="d:\steam\steam.exe" [2010-12-28 1242448]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2011-01-05 1305408]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2011-01-03 15028104]
"Pando Media Booster"="c:\program files\Pando Networks\Media Booster\PMB.exe" [2011-01-19 3046808]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Creative SB Monitoring Utility"="sbavmon.dll" [2009-06-22 98816]
"VolPanel"="c:\program files\Creative\Volume Panel\VolPanlu.exe" [2009-07-07 241789]
"DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2010-12-09 1226608]
"DivX Download Manager"="c:\program files\DivX\DivX Plus Web Player\DDmService.exe" [2010-12-08 63360]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 10.0\Reader\Reader_sl.exe" [2010-11-10 35736]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-11-10 932288]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-10-29 249064]

c:\users\wise\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OpenOffice.org 3.0.lnk - c:\program files\OpenOffice.org 3\program\quickstart.exe [2009-1-15 393216]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-12-22 136176]
R3 androidusb;ADB Interface Driver;c:\windows\system32\Drivers\androidusb.sys [2010-04-29 26112]
R3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service;c:\program files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [2011-01-02 79360]
R3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2011-01-02 79360]
R3 KMWDFILTERx86;HIDServiceDesc;c:\windows\system32\DRIVERS\KMWDFILTER.sys [2009-04-29 25088]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-12-22 1343400]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2010-12-22 691696]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-01-07 218176]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-01-07 378984]
S2 TeamViewer6;TeamViewer 6;c:\program files\TeamViewer\Version6\TeamViewer_Service.exe [2010-12-07 2228008]
S3 ksaud;Creative USB Audio Driver;c:\windows\system32\drivers\ksaud.sys [2009-12-15 899712]
S3 RTL8167;Ovladač Realtek 8167 NT;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776]

.
Obsah adresáře 'Naplánované úlohy'

2011-02-19 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-01-28 05:45]

2011-02-19 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-01-28 05:45]

2011-02-05 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-60759365-597823563-2896440947-1001Core.job
- c:\users\wise\AppData\Local\Google\Update\GoogleUpdate.exe [2010-12-22 05:45]

2011-02-19 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-60759365-597823563-2896440947-1001UA.job
- c:\users\wise\AppData\Local\Google\Update\GoogleUpdate.exe [2010-12-22 05:45]

2011-02-19 c:\windows\Tasks\Norton Security Scan for wise.job
- c:\program files\Norton Security Scan\Engine\2.7.3.34\Nss.exe [2011-01-04 08:48]
.
.
------- Doplňkový sken -------
.
uStart Page = my.daemon-search.com
DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} - hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
FF - ProfilePath - c:\users\wise\AppData\Roaming\Mozilla\Firefox\Profiles\k412thpa.default\
FF - prefs.js: browser.search.selectedEngine - DAEMON Search
FF - prefs.js: browser.startup.homepage - hxxp://my.daemon-search.com/startpage
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Skype extension: {AB2CE124-6272-4b12-94A9-7303C7397BD1} - c:\program files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
FF - Ext: Firebug: firebug@software.joehewitt.com - %profile%\extensions\firebug@software.joehewitt.com
FF - Ext: Web Developer: {c45c406e-ab73-11d8-be73-000a95be3b12} - %profile%\extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}
FF - Ext: DivX Plus Web Player HTML5 <video>: {23fcfd51-4958-4f00-80a3-ae97e717ed8b} - c:\program files\DivX\DivX Plus Web Player\firefox\html5video
FF - Ext: DivX HiQ: {6904342A-8307-11DF-A508-4AE2DFD72085} - c:\program files\DivX\DivX Plus Web Player\firefox\wpa
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

HKCU-Run-EA Core - c:\program files\Electronic Arts\EADM\Core.exe
AddRemove-UnityWebPlayer - c:\users\wise\AppData\Local\Unity\WebPlayer\Uninstall.exe


.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_USERS\S-1-5-21-60759365-597823563-2896440947-1001\Software\SecuROM\License information*]
"datasecu"=hex:26,08,43,a9,54,61,31,4b,8b,bb,51,f3,db,31,0e,17,7a,a1,48,7c,f6,
a0,45,75,c9,4c,0c,91,c5,f9,8b,a9,fd,c7,f2,54,b1,0b,1d,2d,f3,31,8d,9b,55,56,\
"rkeysecu"=hex:20,16,56,a2,45,b4,8d,02,56,33,41,95,d1,61,14,43

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\program files\Creative\Shared Files\CTAudSvc.exe
c:\program files\NVIDIA Corporation\Display\NvXDSync.exe
c:\windows\system32\nvvsvc.exe
c:\windows\system32\PnkBstrA.exe
c:\windows\system32\PnkBstrB.exe
c:\windows\system32\taskhost.exe
c:\windows\system32\conhost.exe
c:\windows\System32\rundll32.exe
c:\program files\OpenOffice.org 3\program\soffice.exe
c:\program files\OpenOffice.org 3\program\soffice.bin
c:\program files\Windows Media Player\wmpnetwk.exe
c:\program files\Skype\Plugin Manager\skypePM.exe
c:\windows\system32\sppsvc.exe
.
**************************************************************************
.
Celkový čas: 2011-02-19 23:53:29 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-02-19 22:53

Před spuštěním: 7 747 493 888
Po spuštění: 8 073 605 120

- - End Of File - - 3F67CD686C9C380C47A45F6AE74C4EDE

[Rudy]

CF smazal několik infikovaných položek. Tím by měl být váš PC po virové stránce čistý. Pokud ale máte problém s hrou samotnou, obraťte se, prosím, na některé herní fórum.